General

  • Target

    0e74a0eb4d6b30cbd5ecb171ca130199_JaffaCakes118

  • Size

    327KB

  • MD5

    0e74a0eb4d6b30cbd5ecb171ca130199

  • SHA1

    29cd5538af7bcad3776d024f05120f22f5da14c8

  • SHA256

    b67ba427d4a44d4affa2578b21ab6dcc4239dba58c1581b4a45594356c974cb8

  • SHA512

    531dd4dfc085af4e873791ba546bcf56b3097c017fe9dd87ea56023bda7be375c9ac6adcbc790070ddd3dd37168ccdc353824d85db7947b4def844915873ac23

  • SSDEEP

    6144:qtYDP41ckmT+h5a5B/MfX3mqjK0wZzXbIZzchzoEEoCCADTVcdUDqJ6k5XorNZRw:kePJkC+h5EBEfX360wZg9AENCGWEqgkJ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • 0e74a0eb4d6b30cbd5ecb171ca130199_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    b729b61eb1515fcf7b3e511e4e66258b


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    8fbbf807b5bf33729f0092d4b8c483c4


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/QQPinyinHelper.dll
    .dll windows:4 windows x86 arch:x86

    c610cf4be60575e1a27ee7e3767940a4


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    bd0c5e2173fde31d22cb05fc3c2a33dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/iotemp.ini
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp