General

  • Target

    5052cf2d1f8b28b72768fae254e34a64_JaffaCakes118

  • Size

    1.6MB

  • MD5

    5052cf2d1f8b28b72768fae254e34a64

  • SHA1

    c28918f7ddabe26ba0d0ece6e3ea953ae5e7df72

  • SHA256

    206f0e7fd34c289a30061a61e700296dca6df48535922f94384f6c1715534691

  • SHA512

    bd222d6b63b1c199da18b652d226f9a67c0f34931ceb60849ec0272a7042ba3bfe46b659baf7e8a09a073a9145bc618a47ff4bc99a25d7bac6dcc78b0118f620

  • SSDEEP

    49152:prpRAcE4BJ16/bI6KH9/W/mxnwfYkW7mr1ir:pREYnFH9/PJYYkWe0

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5052cf2d1f8b28b72768fae254e34a64_JaffaCakes118
    .exe windows:5 windows x86 arch:x86

    b729b61eb1515fcf7b3e511e4e66258b


    Headers

    Imports

    Sections

  • $_2_/DownloadProxyPS.dll
    .dll regsvr32 windows:4 windows x86 arch:x86

    b177dcb186702f9a4775e053e2fa1e17


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_2_/Extract.dll
    .dll windows:4 windows x86 arch:x86

    102033a12b8cf17a451a9e9760020138


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_2_/MiniQQDL.exe
    .exe windows:4 windows x86 arch:x86

    1000863657fcf757933b6f5b5bef7871


    Code Sign

    Headers

    Imports

    Sections

  • $_2_/TNProxy.dll
    .dll regsvr32 windows:4 windows x86 arch:x86

    5b6be223aae9558de13dd3a8d5d553f3


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_2_/Tencentdl.exe
    .exe windows:4 windows x86 arch:x86

    7da95fdbf2af3880629ddacaa64e058c


    Code Sign

    Headers

    Imports

    Sections

  • $_2_/config.ini
  • $_2_/dlcore.dll
    .dll regsvr32 windows:4 windows x86 arch:x86

    11add409ada29fc8e34b7647fbd766e8


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_2_/image/button.png
    .png
  • $_2_/image/checked.png
    .png
  • $_2_/image/close.png
    .png
  • $_2_/image/loading.png
    .png
  • $_2_/image/mainbnd.png
    .png
  • $_2_/image/mainwnd.jpg
    .jpg
  • $_2_/image/min.png
    .png
  • $_2_/image/unchecked.png
    .png
  • $_2_/image/xf.png
    .png
  • $_2_/predown.dll
    .dll windows:4 windows x86 arch:x86

    5fb8f9f4f5552f9cfdfe6e7c2a2df9e7


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_2_/xzqdl.ico