Overview

overview

7

Static

static

3

ed989479e1...18.exe

windows7-x64

7

ed989479e1...18.exe

windows10-2004-x64

7

$PLUGINSDI...hh.dll

windows7-x64

3

$PLUGINSDI...hh.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    ed989479e19dd9a3d73bdbfbb31927dc_JaffaCakes118

  • Size

    613KB

  • MD5

    ed989479e19dd9a3d73bdbfbb31927dc

  • SHA1

    4dc11b7eb1884226e7b1b8404ad20470047a71b4

  • SHA256

    0694e33f855abca0dd6e2c842b40090b10e1dbe52b67eef4cce1b97744f245b0

  • SHA512

    381b765303df21ffffc516dcf1e7e78c2ac64bb9d2fa56ffbb1e7ddcf736699a20fd04919cc1ad462d4f963d4d1e0a9d1ddb24f6c94795d3cb7bb714c3b02bd5

  • SSDEEP

    12288:qyFzASUJueGawn51ah4woRvqWpuS2tm3ddO8SCTPBPd3rMPZU/5VOVP8K:qyFzASUJuqyIh1oRykG6qXKrMPNFH

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • ed989479e19dd9a3d73bdbfbb31927dc_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/frjhhh.dll
    .dll windows:5 windows x86 arch:x86

    4f59203b07a1ba74d73d9097de6e35a9


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1430924531.fgcabfbdbgj