General

  • Target

    40a33b0318fccc2dd41bd564936ca62a_JaffaCakes118

  • Size

    506KB

  • MD5

    40a33b0318fccc2dd41bd564936ca62a

  • SHA1

    50602973f368e161d75adf77b3be7b4ec05b1a16

  • SHA256

    2af4075ac5ac4b21946410dc99f8001a8aa893e77168891b4dc538df02bc661f

  • SHA512

    25bcbb40c20f70069d2bcef312a688bde58f05c19568a0ffc6cb9db9bdf98d692bebc7fca04b4ae0e52fbee67beafa5e873ed92724cc82c5cc7b34ee88eee84d

  • SSDEEP

    12288:cWWDdEmMvueuITy4AcwSc/ZtHStsFUsir//rmbdx/xm7c:cNEmGaxHZtyt4QLiZ3

Score
3/10

Malware Config

Signatures

  • Unsigned PE 17 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 4 IoCs

Files

  • 40a33b0318fccc2dd41bd564936ca62a_JaffaCakes118
    .exe windows:5 windows x86 arch:x86

    f14aba31075188e8a83ea826ace3eca3


    Headers

    Imports

    Sections

  • $PLUGINSDIR/Dialer.dll
    .dll windows:5 windows x86 arch:x86

    6504337db30ea93d33d7a714fefff047


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/FindProcDLL.dll
    .dll windows:4 windows x86 arch:x86

    8df26927f8978d4eb40ff179c0aa961b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:5 windows x86 arch:x86

    a4f5c32542d68c1d7401338981f94111


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:5 windows x86 arch:x86

    aaa34d9251e34ceebd6bf5066471d799


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    5bdcdde5acd7b395f3f3d19ebbb8c6cd


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:5 windows x86 arch:x86

    8349690a00ef0e1a0e53b015791d4cf4


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:5 windows x86 arch:x86

    15853d16b1b391dba821d9b99cd14939


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/w7tbp.dll
    .dll windows:4 windows x86 arch:x86

    fdb9d529772752ac356e92b3e3221b71


    Headers

    Imports

    Exports

    Sections

  • $TEMP/VirtualBoxPortableTemp/7za.exe
    .exe windows:4 windows x86 arch:x86

    15847eb10d7d06dcd5980e8a9b786fd6


    Headers

    Imports

    Sections

  • $TEMP/VirtualBoxPortableTemp/Test.msi
    .msi
  • App/DefaultData/VirtualBox/VirtualBox.xml
    .xml
  • Other/Source/VirtualBox.ico
  • Other/Source/VirtualBox.xml
    .xml
  • Other/Source/_VirtualBoxPortable.nsi
  • Other/Source/_VirtualBoxPortableInstaller.nsi
  • Other/_Include/Installer.bmp
  • Other/_Include/Installer.nsh
  • Other/_Include/Launcher.nsh
  • Other/_Include/Splash.bmp
  • VirtualBoxPortable.exe
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $PLUGINSDIR/FindProcDLL.dll
    .dll windows:4 windows x86 arch:x86

    8df26927f8978d4eb40ff179c0aa961b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/Registry.dll
    .dll windows:4 windows x86 arch:x86

    cd53277eaa7bbb8fb5b2b678274dcb4e


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/SimpleSC.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/newadvsplash.dll
    .dll windows:4 windows x86 arch:x86

    eee37c14e102da3f62385f9796c701ce


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/splash.bmp
  • $PLUGINSDIR/textreplace.dll
    .dll windows:4 windows x86 arch:x86

    c9b875d3f7604775d782afcb308d92df


    Headers

    Imports

    Exports

    Sections