General

  • Target

    30ac530c1bb968852bc05c1b653f5499_JaffaCakes118

  • Size

    111KB

  • MD5

    30ac530c1bb968852bc05c1b653f5499

  • SHA1

    88968ac50e03105d9c7801237dcd8c538402b6e7

  • SHA256

    ac5ff3c9835f04b622b602d1e9ba7c00d33a566cfe34c64a515d436a28c8d4d9

  • SHA512

    cecf5afbaf6682295eb9c8185f97b0d8c4241dddedca801279ae053f379aa256cd31cf0f3c7fcb585ec1848b00988fb4d6dab804a932eb6a5b7678cd093ef814

  • SSDEEP

    1536:4M3dbMMWoRUsqGEz2GTo3n9j6Rh4Romu/ljIX2Ji3wDfG+bU1PpoByARD0GsoCC:5tTas3EiP3p6Rh45kQ2dg1Cjdbd

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs

Files

  • 30ac530c1bb968852bc05c1b653f5499_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    28a099a911237a28521d8b7ea250f089


    Headers

    Imports

    Sections

  • $PLUGINSDIR/NSISdl.dll
    .dll windows:4 windows x86 arch:x86

    c24d42a019c2206e32f361dfd64fcc2c


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/UAC.dll
    .dll windows:4 windows x86 arch:x86

    ab0d6b61eda9d1dc039b5837f731d965


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisXML.dll
    .dll windows:4 windows x86 arch:x86

    b6bd921389cf83ebe4b816957bf827f6


    Headers

    Imports

    Exports

    Sections

  • $TEMP/firefox.vbs
    .vbs