General

  • Target

    3f75755b491117dc21c6a97e69607478_JaffaCakes118

  • Size

    4.0MB

  • MD5

    3f75755b491117dc21c6a97e69607478

  • SHA1

    2b77f9447e4ed794c864cbf28057ee43190f3276

  • SHA256

    1fd27a267e4612d6f28a5ae87b453aff66b62fc6c2210944097fa5ab8accb4c3

  • SHA512

    6be95b4adcda7644f5cbc6fb9cd41d3037266dba9a8c337ba3a8545b33e8c3187607984447c2b939f2ffe7587135946522061db058dbf8bcd9c234e507c4c348

  • SSDEEP

    98304:s9gaP9RlW42esZ15OYJotBwL1b5kVTPKssNN0nN0De59:baP9Of1ZfJ5b2TC5NunOS

Score
3/10

Malware Config

Signatures

  • Unsigned PE 11 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 4 IoCs

Files

  • 3f75755b491117dc21c6a97e69607478_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • 7z/7z.dll
    .dll windows:4 windows x86 arch:x86

    6121a49841bf6f5b3700c1ebbb28be41


    Headers

    Imports

    Exports

    Sections

  • 7z/7z.exe
    .exe windows:5 windows x86 arch:x86

    618f9c06c19f69085dd36e56c2f4e72d


    Headers

    Imports

    Sections

  • Any Windows Password Reset 7 Help.chm
    .chm
  • AnyWindowsPasswordReset7.exe
    .exe windows:5 windows x86 arch:x86

    0a0129cdd0aa6fd7a13474e4bdee95ee


    Headers

    Imports

    Sections

  • Any_Windows_Password_Reset_Trial.iso
    .iso
  • ISOLINUX/BOOT.CAT
  • ISOLINUX/F144.IMG
  • ISOLINUX/ISOLINUX.BIN
  • ISOLINUX/ISOLINUX.CFG
  • ISOLINUX/MEMDISK
  • ISOLINUX/_SVN/ALL_WCPR
  • ISOLINUX/_SVN/ENTRIES
  • ISOLINUX/_SVN/PROP_BAS/F144_IMG.SVN
  • ISOLINUX/_SVN/PROP_BAS/ISOLINUX.SVN
  • ISOLINUX/_SVN/PROP_BAS/MEMDISK.SVN
  • ISOLINUX/_SVN/TEXT_BAS/F144_IMG.SVN
  • ISOLINUX/_SVN/TEXT_BAS/ISOLI000.SVN
  • ISOLINUX/_SVN/TEXT_BAS/ISOLINUX.SVN
  • ISOLINUX/_SVN/TEXT_BAS/MEMDISK.SVN
  • [BOOT]/Boot-NoEmul.img
  • _SVN/ALL_WCPR
  • _SVN/ENTRIES
  • License.txt
  • cdrtools/COPYING
  • cdrtools/cdda2wav.exe
    .exe windows:4 windows x86 arch:x86

    35cbe833d22981286985c85235bc754a


    Headers

    Imports

    Sections

  • cdrtools/cdrecord.exe
    .exe windows:4 windows x86 arch:x86

    4c9cf243b831189de5ff43457e78f83d


    Headers

    Imports

    Sections

  • cdrtools/cygwin1.dll
    .dll windows:4 windows x86 arch:x86

    400661656de0b22c9631b8a6779c390b


    Headers

    Imports

    Exports

    Sections

  • cdrtools/readcd.exe
    .exe windows:4 windows x86 arch:x86

    b67708b5c926f99c64399761351ab604


    Headers

    Imports

    Sections

  • images/Browse.bmp
  • images/Thumbs.db
  • images/about.bmp
  • images/about_mask.bmp
  • images/burn.bmp
  • images/buy now.bmp
  • images/buy now_mask.bmp
  • images/buynow.bmp
  • images/buynow_mask.bmp
  • images/help.bmp
  • images/help_mask.bmp
  • images/left_panel.bmp
  • images/refresh.bmp
  • images/status.bmp
  • images/top_panel.bmp
  • syslinux/memdisk
  • syslinux/syslinux.cfg
  • syslinux/syslinux.exe
    .exe windows:4 windows x86 arch:x86

    ecdae3cee903371f0160ca75abdf6a8c


    Headers

    Imports

    Sections

  • uninst.exe
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections