Overview

overview

7

Static

static

3

30141fceb0...18.exe

windows7-x64

7

30141fceb0...18.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

content/Go...ws.htm

windows7-x64

3

content/Go...ws.htm

windows10-2004-x64

3

content/js/install.js

windows7-x64

3

content/js/install.js

windows10-2004-x64

3

content/js...ner.js

windows7-x64

3

content/js...ner.js

windows10-2004-x64

3

content/js...ver.js

windows7-x64

3

content/js...ver.js

windows10-2004-x64

3

content/js...ver.js

windows7-x64

3

content/js...ver.js

windows10-2004-x64

3

content/js...ode.js

windows7-x64

3

content/js...ode.js

windows10-2004-x64

3

content/js/overlay.js

windows7-x64

3

content/js/overlay.js

windows10-2004-x64

3

content/js/popup.js

windows7-x64

3

content/js/popup.js

windows10-2004-x64

3

content/js...ger.js

windows7-x64

3

content/js...ger.js

windows10-2004-x64

3

content/js...ger.js

windows7-x64

3

content/js...ger.js

windows10-2004-x64

3

content/js...der.js

windows7-x64

3

content/js...der.js

windows10-2004-x64

3

content/js...der.js

windows7-x64

3

content/js...der.js

windows10-2004-x64

3

content/js...ger.js

windows7-x64

3

content/js...ger.js

windows10-2004-x64

3

content/js...ger.js

windows7-x64

3

content/js...ger.js

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    30141fceb000208ce13377197d52fc7d_JaffaCakes118

  • Size

    571KB

  • MD5

    30141fceb000208ce13377197d52fc7d

  • SHA1

    338462bfbe6f7f4504216900199fe1ae6ba5ccb5

  • SHA256

    71fb7d9845ce29f9f08043f8c8950b6b298dafdc1837127214059aa03df33f6b

  • SHA512

    757f9057a2e6cf8a921d6ac6652db089d3a682b133af31b64594693393452630b030bb2f3d4c8ace3112c4ba25783b537e5ca92a9129db35818b7eda1adb4b62

  • SSDEEP

    12288:7cKUZNJushhjROa0ztxTU7vLbYj282bzD9VpScQLfc8vy4h/:75sJus/jROdU7jbYJgD9Tyo86k

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 30141fceb000208ce13377197d52fc7d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/ZipDLL.dll
    .dll windows:4 windows x86 arch:x86

    f10b94e3705eae25c7617ba56a648b77


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/swxpi.zip
    .zip
  • chrome.manifest
  • chrome/similarweb.jar
    .zip
  • content/GoogleNews.htm
    .js
  • content/about.xul
    .xml
  • content/autocomplete-menulist.xml
    .xml
  • content/browser-mac.xul
    .xml
  • content/browser.xul
    .xml
  • content/css/about.css
  • content/css/general.css
  • content/css/newsmode.css
  • content/css/popup.css
  • content/css/prefs.css
  • content/css/scrollbars-mac.css
  • content/css/scrollbars.css
  • content/css/sidebar.css
  • content/css/siteinfo.css
  • content/css/sites.css
  • content/css/suggest.css
  • content/css/tabmode.css
  • content/css/thankyou.css
  • content/css/toolbar.css
  • content/images/Add_a_Site_OVER.png
    .png
  • content/images/Add_a_Site_PRESS.png
    .png
  • content/images/Add_a_Site_REST.png
    .png
  • content/images/Article_Box_Over_Bottom.png
    .png
  • content/images/Article_Box_Over_Repeat.png
    .png
  • content/images/Article_Box_Over_Top.png
    .png
  • content/images/BuzzMode_Bubble_BG_Bottom.gif
    .gif
  • content/images/BuzzMode_Bubble_BG_Bottom_Over.png
    .png
  • content/images/BuzzMode_Bubble_BG_Repeat_Y.gif
    .gif
  • content/images/BuzzMode_Bubble_BG_Repeat_Y_Over.png
    .png
  • content/images/BuzzMode_Bubble_BG_Top.gif
    .gif
  • content/images/BuzzMode_Bubble_BG_Top_Over.png
    .png
  • content/images/BuzzMode_Result_Bottom_Over.png
    .png
  • content/images/BuzzMode_Result_Repeat_Y_Over.png
    .png
  • content/images/BuzzMode_Result_Top_Over.png
    .png
  • content/images/Buzz_No_Results.gif
    .gif
  • content/images/CloseGUI_OVER.png
    .png
  • content/images/CloseGUI_PRESS.png
    .png
  • content/images/CloseGUI_REGULAR.png
    .png
  • content/images/Header_BG.png
    .png
  • content/images/List_Mode_DISABLED.png
    .png
  • content/images/List_Mode_OVER.png
    .png
  • content/images/List_Mode_PRESS.png
    .png
  • content/images/List_Mode_REGULAR.png
    .png
  • content/images/Menu_Icon_ContactUs.png
    .png
  • content/images/Menu_Icon_HomePage.png
    .png
  • content/images/Menu_Icon_SendToFriend.png
    .png
  • content/images/Menu_Icon_Settings.png
    .png
  • content/images/Menu_OVER.png
    .png
  • content/images/Menu_OVER_Top.png
    .png
  • content/images/Menu_PRESS.png
    .png
  • content/images/Menu_PRESS_Top.png
    .png
  • content/images/Menu_REGULAR.png
    .png
  • content/images/Menu_REGULAR_Top.png
    .png
  • content/images/Note_After_Vote.png
    .png
  • content/images/Popup_Add_A_Aite_B.png
    .png
  • content/images/Popup_Add_A_Aite_BG.png
    .png
  • content/images/Popup_Add_A_Aite_B_Over.png
    .png
  • content/images/Popup_Add_A_Aite_Separator.png
    .png
  • content/images/Popup_Add_A_Aite_Thank.png
    .png
  • content/images/Popup_Add_A_Aite_Title.png
    .png
  • content/images/Powered_By_Google.png
    .png
  • content/images/Scroll_Arrow_Down.png
    .png
  • content/images/Scroll_Arrow_Down_DISABLED.png
    .png
  • content/images/Scroll_Arrow_Up.png
    .png
  • content/images/Scroll_Arrow_Up_DISABLED.png
    .png
  • content/images/Settings_Icon_NewTab.png
    .png
  • content/images/Settings_Icon_SameTab.png
    .png
  • content/images/Settings_Icon_SidebarLeft.png
    .png
  • content/images/Settings_Icon_SidebarRight.png
    .png
  • content/images/Share_Right_OVER.png
    .png
  • content/images/Share_Right_PRESS.png
    .png
  • content/images/Share_Right_REGULAR.png
    .png
  • content/images/Share_Separator.gif
    .gif
  • content/images/SideBar_Bottom_BG.png
    .png
  • content/images/Static_Loading.png
    .png
  • content/images/Switch_to_DownBar_OVER.png
    .png
  • content/images/Switch_to_DownBar_PRESS.png
    .png
  • content/images/Switch_to_DownBar_REGULAR.png
    .png
  • content/images/Switch_to_SideBar_OVER.png
    .png
  • content/images/Switch_to_SideBar_PRESS.png
    .png
  • content/images/Switch_to_SideBar_REGULAR.png
    .png
  • content/images/Switch_to_TabMode_OVER.png
    .png
  • content/images/Switch_to_TabMode_PRESS.png
    .png
  • content/images/Switch_to_TabMode_REGULAR.png
    .png
  • content/images/Tab_BG_Bottom.png
    .png
  • content/images/Tab_BG_Bottom_Right.png
    .png
  • content/images/Tab_BG_Closed.png
    .png
  • content/images/Tab_BG_Closed_Anim.gif
    .gif
  • content/images/Tab_BG_Closed_Right.png
    .png
  • content/images/Tab_BG_Extra.png
    .png
  • content/images/Tab_BG_Extra_Right.png
    .png
  • content/images/Tab_BG_Repeat_Y.png
    .png
  • content/images/Tab_BG_Repeat_Y_Right.png
    .png
  • content/images/Tab_BG_Top.png
    .png
  • content/images/Tab_BG_Top_Right.png
    .png
  • content/images/Tab_Button_Close.png
    .png
  • content/images/Tab_Button_Close_Over.png
    .png
  • content/images/Tab_Button_Open.png
    .png
  • content/images/Tab_Button_Open_Over.png
    .png
  • content/images/Tab_Item_Over_BG.png
    .png
  • content/images/Tab_Item_Over_BG_Right.png
    .png
  • content/images/Tab_Logo.png
    .png
  • content/images/Tab_Mode_Close.png
    .png
  • content/images/Tab_Mode_Note.png
    .png
  • content/images/Tab_Result_BG.gif
    .gif
  • content/images/Tabs_BG.png
    .png
  • content/images/Thumb_Down_OVER.png
    .png
  • content/images/Thumb_Down_OVER_List.png
    .png
  • content/images/Thumb_Down_PRESS.png
    .png
  • content/images/Thumb_Down_REGULAR.png
    .png
  • content/images/Thumb_Up_OVER.png
    .png
  • content/images/Thumb_Up_OVER_List.png
    .png
  • content/images/Thumb_Up_PRESS.png
    .png
  • content/images/Thumb_Up_REGULAR.png
    .png
  • content/images/Thumbnail_BG.png
    .png
  • content/images/Thumbnails_Mode_DISABLED.png
    .png
  • content/images/Thumbnails_Mode_OVER.png
    .png
  • content/images/Thumbnails_Mode_PRESS.png
    .png
  • content/images/Thumbnails_Mode_REGULAR.png
    .png
  • content/images/Thumbs_BG.png
    .png
  • content/images/ToggleStatusButton.png
    .png
  • content/images/about_us_logo.png
    .png
  • content/images/articles.png
    .png
  • content/images/buzz.png
    .png
  • content/images/emptybg.jpg
    .jpg
  • content/images/face_icon.png
    .png
  • content/images/firefox.png
    .png
  • content/images/logo16.png
    .png
  • content/images/logo20.png
    .png
  • content/images/logo24.png
    .png
  • content/images/logo32.png
    .png
  • content/images/logo_install.png
    .png
  • content/images/new_window.png
    .png
  • content/images/newtab.png
    .png
  • content/images/no_thumbnail.jpg
    .jpg
  • content/images/preview.png
    .png
  • content/images/retry.png
    .png
  • content/images/reviews_icon.png
    .png
  • content/images/search.png
    .png
  • content/images/setting_icon.png
    .png
  • content/images/share_icon.png
    .png
  • content/images/sidebar.png
    .png
  • content/images/similarProducts.png
    .png
  • content/images/similarsites_small_logo.png
    .png
  • content/images/similarsites_small_logo2.png
    .png
  • content/images/sponsored.png
    .png
  • content/images/sponsoredBackground.png
    .png
  • content/images/sponsoredBackgroundHover.png
    .png
  • content/images/sponsoredLabel.png
    .png
  • content/images/suggest_logo.jpg
    .jpg
  • content/images/sw_sidebar_mouseover.png
    .png
  • content/images/thank_you_logo.jpg
    .jpg
  • content/images/tip_logo.jpg
    .jpg
  • content/images/toolbar.png
    .png
  • content/images/toolbar_button.png
    .png
  • content/images/twit_icon.png
    .png
  • content/images/votedown.png
    .png
  • content/images/voteup.png
    .png
  • content/install.xul
    .xml
  • content/js/install.js
    .js
  • content/js/listeners/httpListener.js
    .js
  • content/js/listeners/prefsObserver.js
    .js
  • content/js/listeners/uninstallObserver.js
    .js
  • content/js/miniMode.js
    .js
  • content/js/overlay.js
    .js
  • content/js/popup.js
    .js
  • content/js/relatedsites/advertisementManager.js
    .js
  • content/js/relatedsites/datalayer/dataLayerManager.js
    .js
  • content/js/relatedsites/datalayer/localDatabaseDataProvider.js
    .js
  • content/js/relatedsites/datalayer/serverDataProvider.js
    .js
  • content/js/relatedsites/relatedSitesManager.js
    .js
  • content/js/relatedsites/userSuggestionManager.js
    .js
  • content/js/relatedsites/view/baseView.js
    .js
  • content/js/relatedsites/view/miniView.js
    .js
  • content/js/relatedsites/view/sidebar/listView.js
    .js
  • content/js/relatedsites/view/sidebar/searchEngineView.js
    .js
  • content/js/relatedsites/view/sidebar/thumbnailView.js
    .js
  • content/js/relatedsites/view/toolbar/HTMLToolbarView.js
    .js
  • content/js/relatedsites/view/toolbar/toolbarView.js
    .js
  • content/js/relatedsites/view/viewManager.js
    .js
  • content/js/relatedsites/votesManager.js
    .js
  • content/js/search.js
    .js
  • content/js/searchExtender.js
    .js
  • content/js/sidebar/articles.js
    .js
  • content/js/sidebar/buzz.js
    .js
  • content/js/sidebar/sidebar.js
    .js
  • content/js/sidebar/siteHistory.js
    .js
  • content/js/sidebar/topSitesManager.js
    .js
  • content/js/similarweb.js
    .js
  • content/js/statusbar.js
    .js
  • content/js/toolbar.js
    .js
  • content/popup.xul
    .js .xml polyglot
  • content/preferences.xul
    .js .xml polyglot
  • content/similarweb.xul
    .xml
  • content/toolbar.xul
    .xml
  • content/toolbarButton.xul
    .xml
  • locale/de-DE/similarweb/similarweb.dtd
  • locale/de-DE/similarweb/similarweb.properties
  • locale/en-US/SimilarWeb.dtd
  • locale/en-US/similarweb/similarweb.dtd
  • locale/en-US/similarweb/similarweb.properties
  • locale/es-ES/similarweb/similarweb.dtd
  • locale/es-ES/similarweb/similarweb.properties
  • locale/fr-FR/similarweb/similarweb.dtd
  • locale/fr-FR/similarweb/similarweb.properties
  • locale/he-IL/similarweb/similarweb.dtd
  • locale/he-IL/similarweb/similarweb.properties
  • locale/it/similarweb/similarweb.dtd
  • locale/it/similarweb/similarweb.properties
  • locale/ko-KR/similarweb/similarweb.dtd
  • locale/ko-KR/similarweb/similarweb.properties
  • locale/pl/similarweb/similarweb.dtd
  • locale/pl/similarweb/similarweb.properties
  • locale/pt-BR/similarweb/similarweb.dtd
  • locale/pt-BR/similarweb/similarweb.properties
  • locale/ru-RU/similarweb/similarweb.dtd
  • locale/ru-RU/similarweb/similarweb.properties
  • locale/tr-TR/similarweb/similarweb.dtd
  • locale/tr-TR/similarweb/similarweb.properties
  • locale/zh-CN/similarweb/similarweb.dtd
  • locale/zh-CN/similarweb/similarweb.properties
  • skin/all/Articles-Thumbnail.png
    .png
  • skin/all/Icon_Products.png
    .png
  • skin/all/Note_After_Vote.png
    .png
  • skin/all/Review_lines.png
    .png
  • skin/all/Setting_icon.png
    .png
  • skin/all/Share_twitter.png
    .png
  • skin/all/Share_twitter_on.png
    .png
  • skin/all/Toolbar_DropDown_SW_Logo.png
    .png
  • skin/all/Toolbar_SW_Logo.png
    .png
  • skin/all/Toolbar_SW_Logo_Small.png
    .png
  • skin/all/about.png
    .png
  • skin/all/add_site.png
    .png
  • skin/all/application_side_expand.png
    .png
  • skin/all/application_side_expand_small.png
    .png
  • skin/all/arrow-small-down.png
    .png
  • skin/all/arrow-small-side.png
    .png
  • skin/all/defult_favicon.png
    .png
  • skin/all/ff-add-review-disabled.png
    .png
  • skin/all/gripper.png
    .png
  • skin/all/help.png
    .png
  • skin/all/homepage.png
    .png
  • skin/all/lines.png
    .png
  • skin/all/loading.gif
  • skin/all/no-image.ico
    .jpg
  • skin/all/popup.png
    .png
  • skin/all/review_title.png
    .png
  • skin/all/search.png
    .png
  • skin/all/search_btn.png
    .png
  • skin/all/search_btn_clicked.png
    .png
  • skin/all/search_btn_over.png
    .png
  • skin/all/sendfeedback.png
    .png
  • skin/all/serach_similarsites.png
    .png
  • skin/all/setting_grid.png
    .png
  • skin/all/setting_icons.png
    .png
  • skin/all/setting_list.png
    .png
  • skin/all/share_email.png
    .png
  • skin/all/share_email_on.png
    .png
  • skin/all/share_facebook.png
    .png
  • skin/all/share_facebook_on.png
    .png
  • skin/all/similarsites.png
    .png
  • skin/all/similarsites_search.png
    .png
  • skin/all/sitevist_icon.png
    .png
  • skin/all/star_gold.png
    .png
  • skin/all/star_gold_tb.png
    .png
  • skin/all/star_gray.png
    .png
  • skin/all/star_gray_tb.png
    .png
  • skin/all/star_half.png
    .png
  • skin/all/star_half_tb.png
    .png
  • skin/all/star_red.png
    .png
  • skin/all/star_red_tb.png
    .png
  • skin/all/tooltip_bg.png
    .png
  • skin/all/tooltip_bg_big.png
    .png
  • skin/all/topsites.png
    .png
  • skin/all/topsites_search.png
    .png
  • skin/mac/toolbarskin.css
  • skin/win/toolbarskin.css
  • defaults/preferences/similarweb.js
  • install.rdf
    .xml
  • resources/Observers.js
    .js
  • resources/SiteHistoryServices.js
    .js
  • resources/affiliates.js
    .js
  • resources/ajax.js
    .js
  • resources/consts.js
    .js
  • resources/dateFormat.js
    .js
  • resources/db/sql.js
    .js
  • resources/db/storage.js
    .js
  • resources/general.js
    .js
  • resources/starRating.js
    .js
  • resources/tab.js
    .js
  • resources/url.js
    .js