General

  • Target

    8a8c1f154ede520ba28ee23fa9039943_JaffaCakes118

  • Size

    146KB

  • MD5

    8a8c1f154ede520ba28ee23fa9039943

  • SHA1

    f61c11ba95234d9474d7c93b4b8bee15218f5a3b

  • SHA256

    1a6c736373f160139b4efec1750cc70e4c18b67d402aadf66e7c551bdbc9b51e

  • SHA512

    c7c05023f4d8be74daf52c3a5c669c2feb73f66e5b3365ce639993626cbb3089b77837d648f564148ea28292b1af1d62285142b2fe31c554815d331513a40fa7

  • SSDEEP

    3072:idxNE+Hb+eyz9zIt45jTtLdNDe0MbWShVQt9sfNL/vMF5lnk2/reAq2RAs:iW+7+eMasjNDeJnhGvEoFnRiho

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • 8a8c1f154ede520ba28ee23fa9039943_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    e221f4f7d36469d53810a4b5f9fc8966


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b233fd95d297fbba0563f3f6eae042e0


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • 17fh3inrygzt66bkxyd45zwr8,4k2jxds8qtdo2192sqg4wnfhh
    .js
  • clicktale
    .js
  • encryptionkey1658349535.json
  • halyards.R
  • ios.png
    .png
  • tipTip.css
  • uninst.exe
    .exe windows:4 windows x86 arch:x86

    e221f4f7d36469d53810a4b5f9fc8966


    Headers

    Imports

    Sections