General

  • Target

    5197601d3263fce60649415662ad878e_JaffaCakes118

  • Size

    521KB

  • MD5

    5197601d3263fce60649415662ad878e

  • SHA1

    d0ed76a028aac5c25ef35e794a5f46722ed7d9d5

  • SHA256

    1ecac9baae9daf7c7766ff7683570166d3be1031542475546c4db44e850dcafa

  • SHA512

    b3edb5135de6e1321e780cf878801e362134852b2d22ad3ef087e14a20dccd1bf55c1c9ee2cdb6266f70d4ee430d9c14764e778c03209a501b4cbea6fdbb6a68

  • SSDEEP

    12288:ibemqOid95Fl3kg7RVq8Nik6Kf6eeUgJi3HnzdeKnPkxgLOOk:ibRUdD3zXH6JeRgJi3nx5bLbk

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • 5197601d3263fce60649415662ad878e_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $APPDATA/DivX_Installer.exe
    .exe windows:4 windows x86 arch:x86

    3f47c6cbb0aabd7ec300e9eb7dc04ee6


    Headers

    Imports

    Sections

  • $PLUGINSDIR/ExecDos.dll
    .dll windows:4 windows x86 arch:x86

    2dfc6a992d004b736e85c64219a88b4a


    Headers

    Imports

    Exports

    Sections

  • $TEMP/7za.exe
    .exe windows:4 windows x86 arch:x86

    a27a282eaa8dea8ef01eb4bdd213fffb


    Headers

    Imports

    Sections

  • $TEMP/a1.7z
    .7z