General

  • Target

    JaffaCakes118_4d99dbdd282865eaf0dc3fd76d9eb031a3e1565d6e8e3101da0009262aa16872

  • Size

    154KB

  • MD5

    0920cdd96845a859bc318abae66e3ddc

  • SHA1

    f0fb0c6597058840b9e3f468356b49515a495d2c

  • SHA256

    4d99dbdd282865eaf0dc3fd76d9eb031a3e1565d6e8e3101da0009262aa16872

  • SHA512

    85ef1c2365e314bed1df60860fd13ecad3871d92fd4b134f2399eb53e304eb8d077d2ade15929577e5435ff29fb06b26def3914d96ae81f3a372376191f8dda6

  • SSDEEP

    3072:OZsmJ/TGGgyay4fXt9gqsRYPiirtSmNt8smOQxMxMHbU/1XKZyo:OZHH4f9pv94mNGsmCyHqFKZyo

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • JaffaCakes118_4d99dbdd282865eaf0dc3fd76d9eb031a3e1565d6e8e3101da0009262aa16872
    .zip

    Password: infected

  • 07b35bc0d76eebc56cd228b1212d08f693cbefcad6878970b626b0ac1809a55b
    .exe windows:4 windows x86 arch:x86

    5f0c714c36e6cc016b3a1f4bc86559e4


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • License.txt
  • Praeg/battery-level-30-charging-symbolic.svg
    .xml
  • Praeg/ps.txt
  • Terrnet.Tek123