General

  • Target

    JaffaCakes118_a73e3a58ee40d331a22ff7a42221d155126559065108a1da6428fb79e67c887f

  • Size

    314KB

  • MD5

    400b1caca0b7bbe268371d5fd0f9b1e6

  • SHA1

    33fd5f25525f0b32e8093156e9ad9ee47e269b3d

  • SHA256

    a73e3a58ee40d331a22ff7a42221d155126559065108a1da6428fb79e67c887f

  • SHA512

    70cae2e025a02eba6d09c680f6afa61e072488272b450c795151f8b306b3a962d66554b7ab13da89e1df7ae65b706675546dd7568957d9f6d8e2a51b27129b89

  • SSDEEP

    6144:FPuFxz6OOZQPiGnW75Mw6FyCGy5o2G4lSAbBlTL78vel4VVVroFybg1:FPS6OFP58Aho23l1bvTL78vK4rb4

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_a73e3a58ee40d331a22ff7a42221d155126559065108a1da6428fb79e67c887f
    .zip

    Password: infected

  • e1a21cb3070236ea19031333fd1e7f05d9423040785d18ddb3ca87b79e446840
    .exe windows:4 windows x86 arch:x86

    e2a592076b17ef8bfb48b7e03965a3fc


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • Endegyldighed/ingemanns/Actinomorphy.Baa
  • Endegyldighed/ingemanns/VirtualDrivePlugin.dll
    .dll windows:6 windows x64 arch:x64

    d1c192fd95e8415609e2c583191b7b36


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Endegyldighed/ingemanns/libffi-7.dll
    .dll windows:4 windows x64 arch:x64

    6b539304435d48771cc36f5f9462fabf


    Headers

    Imports

    Exports

    Sections

  • Furazan/recanters/afspilles/Xanthoprotein/multimedia-player-apple-ipod-touch-symbolic.svg
  • Ravneagtigt/Sudder/libxml2-2.0.typelib
    .html
  • Savvrks.ret