Overview

overview

7

Static

static

3

e2b2b461ef...18.exe

windows7-x64

7

e2b2b461ef...18.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e2b2b461ef124f52ef12a3fa2e144a41_JaffaCakes118

  • Size

    581KB

  • MD5

    e2b2b461ef124f52ef12a3fa2e144a41

  • SHA1

    48ba8b2527bd54c3906fba0246030214fe270a50

  • SHA256

    21b53879aedb257069ae1cbe5783ab06e8832d51f8a36117abd04d4a4b026be7

  • SHA512

    60c79f82c09724fbe978022701c3b2a75d1f615e5ccc1eed5f54e419fb899a98794eb30237fdb77f28c79768ce04ba748f61cdf8cc6092f49122e4e26f0620f0

  • SSDEEP

    12288:zt4hUnM8rC6ibkVAw9gPdR0YaFYponURzneJOYLT5go9Gl1:zt4hmjrebk29PdR0Kponczne4W5a

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • e2b2b461ef124f52ef12a3fa2e144a41_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/kaxgcem.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431820951.fbhcabfbfbbdf