General

  • Target

    0db1d1728e9a134f170ab4f0aa1eeeb0_JaffaCakes118

  • Size

    240KB

  • MD5

    0db1d1728e9a134f170ab4f0aa1eeeb0

  • SHA1

    fb0c179bf36f626bf2b88d7de2a06aff7a982468

  • SHA256

    0464d3f70919529a4a97ca9fb0c9fec64ae56a14a1e004570f7df04705ae4ab8

  • SHA512

    bc42718afdd609797b53b2dd81970eb9b9d5a6a317355f5daafd0cef2b3135a6dd88531e0893e96e0ba068e94f67bc0c283124340170c8e795f1b5111574c1d9

  • SSDEEP

    6144:3saocyLCf5xfnP08U4/J1YdKz7P4c9gOY3V4j8uXtdunOA4/qa:3tobo5xfnPNx1YdkPjm4j8+e4/v

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs

Files

  • 0db1d1728e9a134f170ab4f0aa1eeeb0_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    28a099a911237a28521d8b7ea250f089


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/VPatch.dll
    .dll windows:4 windows x86 arch:x86

    dc24455ab29fc93eff5ead6f445eb2ab


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/inst.xex
  • $PLUGINSDIR/inst.xxe
  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    06e07a9e2c8ec78ec44f1a538a1bd2a2


    Headers

    Imports

    Exports

    Sections