Overview

overview

10

Static

static

3

JaffaCakes...61.exe

windows7-x64

7

JaffaCakes...61.exe

windows10-2004-x64

8

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

8

$PLUGINSDI...nu.dll

windows7-x64

3

$PLUGINSDI...nu.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

8

$PLUGINSDI...fo.dll

windows7-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

8

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

8

$PLUGINSDI...dk.dll

windows7-x64

3

$PLUGINSDI...dk.dll

windows10-2004-x64

8

AdsScheduler.exe

windows7-x64

10

AdsScheduler.exe

windows10-2004-x64

10

Base.exe

windows7-x64

3

Base.exe

windows10-2004-x64

8

Lang/Ar/help.chm

windows7-x64

1

Lang/Ar/help.chm

windows10-2004-x64

8

Lang/Bg/help.chm

windows7-x64

1

Lang/Bg/help.chm

windows10-2004-x64

8

Lang/Da/help.chm

windows7-x64

1

Lang/Da/help.chm

windows10-2004-x64

8

Lang/De/help.chm

windows7-x64

1

Lang/De/help.chm

windows10-2004-x64

8

Lang/En/help.chm

windows7-x64

1

Lang/En/help.chm

windows10-2004-x64

8

Lang/Es/help.chm

windows7-x64

1

Lang/Es/help.chm

windows10-2004-x64

8

Lang/Fr/help.chm

windows7-x64

1

Lang/Fr/help.chm

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_db4c18758053b241f71615a11d1f8561

  • Size

    19.0MB

  • MD5

    db4c18758053b241f71615a11d1f8561

  • SHA1

    b0ee5976539fc92258c63de0cda7307e94365e72

  • SHA256

    f15c44f5e0edbc24d48862f40412298c4858d2884a91b66bf258466a744873b6

  • SHA512

    70729e974a61992386779446f129326e6e6194c15fdec34e58c3cb4df5e194e0c55e997a345fe9e6a77356148e486e8c09c7c0fd03898ffcae7c87862e22eafa

  • SSDEEP

    393216:Z86xyOctdzkTiouNYRG7DHn3btHKiSkWTpHMoVYshdOMKQEv8W:Z8mxcTkTiocIwCpHMwYDPvL

Score
3/10

Malware Config

Signatures

  • Unsigned PE 26 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • JaffaCakes118_db4c18758053b241f71615a11d1f8561
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/LangDLL.dll
    .dll windows:4 windows x86 arch:x86

    9b6b6a7858e17fb0b17e1c1428330343


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/StartMenu.dll
    .dll windows:4 windows x86 arch:x86

    a648aeaa164b592c1e8892a10400b5ae


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/UserInfo.dll
    .dll windows:4 windows x86 arch:x86

    afa8e526425f3585465337467d0b5909


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    1e2884056e655f2b7bc5a904e352fc80


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisdk.dll
    .dll windows:5 windows x86 arch:x86

    ca554fe0df6febc33d6b9796e0758748


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/uninst_survey.ini
  • AdsScheduler.exe
    .exe windows:5 windows x86 arch:x86

    a587b83899d0f99f84ae0717ac443828


    Headers

    Imports

    Exports

    Sections

  • Base.exe
    .exe windows:5 windows x86 arch:x86

    6cc9df1ef6143c558e642a2f0574c418


    Code Sign

    Headers

    Imports

    Sections

  • Lang/Ar/help.chm
    .chm
  • Lang/Ar/lang.ini
  • Lang/Ar/lang_ads.ini
  • Lang/Ar/lang_b.ini
  • Lang/Ar/lang_g.ini
  • Lang/Ar/lang_pgp.ini
  • Lang/Ar/name
  • Lang/Bg/help.chm
    .chm
  • Lang/Bg/lang.ini
  • Lang/Bg/lang_ads.ini
  • Lang/Bg/lang_b.ini
  • Lang/Bg/lang_g.ini
  • Lang/Bg/lang_pgp.ini
  • Lang/Bg/name
  • Lang/Da/help.chm
    .chm
  • Lang/Da/lang.ini
  • Lang/Da/lang_ads.ini
  • Lang/Da/lang_b.ini
  • Lang/Da/lang_g.ini
  • Lang/Da/lang_pgp.ini
  • Lang/Da/name
  • Lang/De/help.chm
    .chm
  • Lang/De/lang.ini
  • Lang/De/lang_ads.ini
  • Lang/De/lang_b.ini
  • Lang/De/lang_g.ini
  • Lang/De/lang_pgp.ini
  • Lang/De/name
  • Lang/En/help.chm
    .chm
  • Lang/En/lang.ini
  • Lang/En/lang_ads.ini
  • Lang/En/lang_b.ini
  • Lang/En/lang_g.ini
  • Lang/En/lang_pgp.ini
  • Lang/En/name
  • Lang/Es/help.chm
    .chm
  • Lang/Es/lang.ini
  • Lang/Es/lang_ads.ini
  • Lang/Es/lang_b.ini
  • Lang/Es/lang_g.ini
  • Lang/Es/lang_pgp.ini
  • Lang/Es/name
  • Lang/Fr/help.chm
    .chm
  • Lang/Fr/lang.ini
  • Lang/Fr/lang_ads.ini
  • Lang/Fr/lang_b.ini
  • Lang/Fr/lang_g.ini
  • Lang/Fr/lang_pgp.ini
  • Lang/Fr/name
  • Lang/Gr/help.chm
    .chm
  • Lang/Gr/lang.ini
  • Lang/Gr/lang_ads.ini
  • Lang/Gr/lang_b.ini
  • Lang/Gr/lang_g.ini
  • Lang/Gr/lang_pgp.ini
  • Lang/Gr/name
  • Lang/It/help.chm
    .chm
  • Lang/It/lang.ini
  • Lang/It/lang_ads.ini
  • Lang/It/lang_b.ini
  • Lang/It/lang_g.ini
  • Lang/It/lang_pgp.ini
  • Lang/It/name
  • Lang/No/help.chm
    .chm
  • Lang/No/lang.ini
  • Lang/No/lang_ads.ini
  • Lang/No/lang_b.ini
  • Lang/No/lang_g.ini
  • Lang/No/lang_pgp.ini
  • Lang/No/name
  • Lang/Pl/help.chm
    .chm
  • Lang/Pl/lang.ini
  • Lang/Pl/lang_ads.ini
  • Lang/Pl/lang_b.ini
  • Lang/Pl/lang_g.ini
  • Lang/Pl/lang_pgp.ini
  • Lang/Pl/name
  • Lang/Pt/help.chm
    .chm
  • Lang/Pt/lang.ini
  • Lang/Pt/lang_ads.ini
  • Lang/Pt/lang_b.ini
  • Lang/Pt/lang_g.ini
  • Lang/Pt/lang_pgp.ini
  • Lang/Pt/name
  • Lang/Ro/help.chm
    .chm
  • Lang/Ro/lang.ini
  • Lang/Ro/lang_ads.ini
  • Lang/Ro/lang_b.ini
  • Lang/Ro/lang_g.ini
  • Lang/Ro/lang_pgp.ini
  • Lang/Ro/name
  • Lang/Ru/help.chm
    .chm
  • Lang/Ru/lang.ini
  • Lang/Ru/lang_ads.ini
  • Lang/Ru/lang_b.ini
  • Lang/Ru/lang_g.ini
  • Lang/Ru/lang_pgp.ini
  • Lang/Ru/name
  • Lang/Sk/help.chm
    .chm
  • Lang/Sk/lang.ini
  • Lang/Sk/lang_ads.ini
  • Lang/Sk/lang_b.ini
  • Lang/Sk/lang_g.ini
  • Lang/Sk/lang_pgp.ini
  • Lang/Sk/name
  • Lang/Sr/help.chm
    .chm
  • Lang/Sr/lang.ini
  • Lang/Sr/lang_ads.ini
  • Lang/Sr/lang_b.ini
  • Lang/Sr/lang_g.ini
  • Lang/Sr/lang_pgp.ini
  • Lang/Sr/name
  • Lang/Tr/help.chm
    .chm
  • Lang/Tr/lang.ini
  • Lang/Tr/lang_ads.ini
  • Lang/Tr/lang_b.ini
  • Lang/Tr/lang_g.ini
  • Lang/Tr/lang_pgp.ini
  • Lang/Tr/name
  • Lang/Ua/help.chm
    .chm
  • Lang/Ua/lang.ini
  • Lang/Ua/lang_ads.ini
  • Lang/Ua/lang_b.ini
  • Lang/Ua/lang_g.ini
  • Lang/Ua/lang_pgp.ini
  • Lang/Ua/name
  • PlGen.exe
    .exe windows:5 windows x86 arch:x86

    ddc65c1ae76d2523f2bcc34d9593e129


    Code Sign

    Headers

    Imports

    Sections

  • PlaylistGeneratorPro.exe
    .exe windows:5 windows x86 arch:x86

    a587b83899d0f99f84ae0717ac443828


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Plugins/bass_aac.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • Plugins/basscd.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • Plugins/bassflac.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • Plugins/basswma.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • Plugins/enc_aacPlus.exe
    .exe windows:5 windows x86 arch:x86

    85695ee2b7cb32470630e90dfdcdf17b


    Headers

    Imports

    Sections

  • Plugins/enc_aacplus.dll
    .dll windows:4 windows x86 arch:x86

    0f62a0a7281bffb7099d2b65f5712a16


    Headers

    Imports

    Exports

    Sections

  • Plugins/flac.exe
    .exe windows:5 windows x86 arch:x86

    2b46fc4eb9586f0c7d352e0382466dae


    Headers

    Imports

    Sections

  • Plugins/lame.exe
    .exe windows:4 windows x86 arch:x86

    9dcf67e8ce01b0840a4da998647ac933


    Headers

    Imports

    Sections

  • Plugins/nscrt.dll
    .dll windows:4 windows x86 arch:x86

    7acc8c379c768a1ecd81ec502ff5f33e


    Headers

    Imports

    Exports

    Sections

  • Plugins/oggenc2.exe
    .exe windows:5 windows x86 arch:x86

    b326f5c500e93929ca209ba0e5610331


    Headers

    Imports

    Sections

  • Presets/AutoAmp/Normal.prs
  • Presets/AutoAmp/Preset 2.prs
  • Presets/Crossfade/Default.crp
  • Presets/Distortion/1.prs
  • Presets/Distortion/Normal.prs
  • Presets/Echo/Abyss.prs
  • Presets/Echo/Combo.prs
  • Presets/Echo/Feedback Echo.prs
  • Presets/Echo/LR Echo.prs
  • Presets/Echo/LightEcho.prs
  • Presets/Echo/Reverb+Echo.prs
  • Presets/Echo/Trinity.prs
  • Presets/Echo2/Effect 5.prs
  • Presets/Echo2/In studio.prs
  • Presets/Echo2/Re-echo.prs
  • Presets/Echo2/Reflection.prs
  • Presets/Echo2/Repulse.prs
  • Presets/Echo2/Rich Double.prs
  • Presets/Echo2/Slo-mo.prs
  • Presets/Echo2/True Delay.prs
  • Presets/Echo2/Wave Delay.prs
  • Presets/Encoder.prs
  • Presets/Equalizer/Classical.eqp
  • Presets/Equalizer/Club.eqp
  • Presets/Equalizer/Dance.eqp
  • Presets/Equalizer/Default.eqp
  • Presets/Equalizer/Live.eqp
  • Presets/Equalizer/Party.eqp
  • Presets/Equalizer/Pop.eqp
  • Presets/Equalizer/Reggae.eqp
  • Presets/Equalizer/Rock.eqp
  • Presets/Equalizer/Ska.eqp
  • Presets/Equalizer/Soft Rock.eqp
  • Presets/Equalizer/Soft.eqp
  • Presets/Equalizer/Techno.eqp
  • Presets/Generator/default.prs.1
  • Presets/Reverb/Bazar.prs
  • Presets/Reverb/Hall.prs
  • Presets/Reverb/Lobby.prs
  • Presets/Reverb/Room.prs
  • Presets/Reverb/Shower.prs
  • Presets/Reverb/Tanker.prs
  • ReadMe.txt
  • ReadMe_Ru.txt
  • ReportViewer.exe
    .exe windows:5 windows x86 arch:x86

    2b959fecf0ffc2e06ae5cb7744bb8116


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • TrackTool.exe
    .exe windows:5 windows x86 arch:x86

    eb2667e8cdc972cc4a7ffb2c4870dbb3


    Code Sign

    Headers

    Imports

    Sections

  • bass.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • bass_fx.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • bass_vst.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • bass_wadsp.dll
    .dll windows:5 windows x86 arch:x86

    6e5761614a2ed6fdd0aec2f4c05d0fa3


    Headers

    Imports

    Exports

    Sections

  • bassasio.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • bassenc.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • bassmix.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • basswasapi.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • cfedit.exe
    .exe windows:5 windows x86 arch:x86

    851388fed9353e26d3e2cfda80b2598a


    Headers

    Imports

    Exports

    Sections

  • encoder.exe
    .exe windows:5 windows x86 arch:x86

    29ca757f6fd515c873772b16db30085b


    Code Sign

    Headers

    Imports

    Sections

  • license.txt
  • license_RU.txt
  • line.in
  • radioboss.exe
    .exe windows:5 windows x86 arch:x86

    a587b83899d0f99f84ae0717ac443828


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • radioboss_guard.exe
    .exe windows:5 windows x86 arch:x86

    014c2d7d2852ddd912ac7c931210b593


    Code Sign

    Headers

    Imports

    Sections

  • uninst.exe.nsis
  • voicetrackrecorder.exe
    .exe windows:5 windows x86 arch:x86

    c9a5894b79783a5063bcf3a4a1e72ef8


    Code Sign

    Headers

    Imports

    Sections