General

  • Target

    JaffaCakes118_3a994c7c2e0700b43c5106c4ffc206833cc9acb6c3e5daf1adf99dabde2b08a7

  • Size

    187KB

  • MD5

    e1d31202a96df89cf440c6a6bcc6f67c

  • SHA1

    ab3050addb5c989c59371e12e58734ceb24cd20a

  • SHA256

    3a994c7c2e0700b43c5106c4ffc206833cc9acb6c3e5daf1adf99dabde2b08a7

  • SHA512

    50290f85ff63016620c73a66af048f6933c8664b0e7e70a05759b73f93b86070248eb792545a299033441fbfee7366ff49f0dffa7f2b98cfc95fcf7ddb076a8d

  • SSDEEP

    3072:1/lfGjauIGfpVeAga7o2QdA9r6MRHRKN29QODMyRBPSouKve/RzGXnlnHybKDD:1/4acf7/U2Qu9WMBwQ9QOIyCouYZHdD

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • JaffaCakes118_3a994c7c2e0700b43c5106c4ffc206833cc9acb6c3e5daf1adf99dabde2b08a7
    .zip

    Password: infected

  • SOA May-June 2021.bin
    .exe windows:4 windows x86 arch:x86

    b76363e9cb88bf9390860da8e50999d2


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    f2ac1ab587d5531d5f1bf76c094aef4c


    Headers

    Imports

    Exports

    Sections

  • lycvagd9bg8xb3t
  • vgszqueznitmjq