Overview

overview

7

Static

static

3

104f03b8c2...18.exe

windows7-x64

7

104f03b8c2...18.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

$PLUGINSDI...er.exe

windows7-x64

7

$PLUGINSDI...er.exe

windows10-2004-x64

7

$PLUGINSDIR/mism.exe

windows7-x64

7

$PLUGINSDIR/mism.exe

windows10-2004-x64

7

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    104f03b8c2a1c3fef07ad40252eabaf0_JaffaCakes118

  • Size

    209KB

  • MD5

    104f03b8c2a1c3fef07ad40252eabaf0

  • SHA1

    0bb24d93dfa55faae4f638b0afe7baa07060a821

  • SHA256

    0ca066f7c7593213a2d2460e4e2d1e047be07bee9b81b4285105f35e6757fdb5

  • SHA512

    ddff96e38d191f2e8584e62d47b80fa46f4c0087cfe9c5aa758ebb96a22e674bdbad3b90435de50a14612fdf29d4198c599d2f30bcbc811d4a6df151769101c4

  • SSDEEP

    6144:8e34jgKL+k+imkXFjMvKf0XFwS4+gGlYqPsu4uO:Sh+7oSvKmFwS4csL

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 104f03b8c2a1c3fef07ad40252eabaf0_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    5bdcdde5acd7b395f3f3d19ebbb8c6cd


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/mconduitinstaller.exe
    .exe windows:5 windows x86 arch:x86

    be41bf7b8cc010b614bd36bbca606973


    Code Sign

    Headers

    Imports

    Sections

  • .data
  • .rdata
  • .reloc
  • .rsrc/0/version.txt
  • .rsrc/1033/DIALOG/105
  • .rsrc/1033/DIALOG/106
  • .rsrc/1033/DIALOG/111
  • .rsrc/1033/GROUP_ICON/103
  • .rsrc/1033/ICON/1.ico
  • .rsrc/1033/MANIFEST/1
    .xml
  • .text
  • CERTIFICATE
  • [0]
  • [1]
  • $PLUGINSDIR/mism.exe
    .exe windows:5 windows x86 arch:x86

    be41bf7b8cc010b614bd36bbca606973


    Code Sign

    Headers

    Imports

    Sections

  • .data
  • .rdata
  • .reloc
  • .rsrc/0/version.txt
  • .rsrc/1033/DIALOG/105
  • .rsrc/1033/DIALOG/106
  • .rsrc/1033/DIALOG/111
  • .rsrc/1033/GROUP_ICON/103
  • .rsrc/1033/ICON/1.ico
  • .rsrc/1033/MANIFEST/1
    .xml
  • .text
  • CERTIFICATE
  • [0]
  • [1]
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    1e2884056e655f2b7bc5a904e352fc80


    Headers

    Imports

    Exports

    Sections