Overview

overview

7

Static

static

3

008b63c601...18.exe

windows7-x64

7

008b63c601...18.exe

windows10-2004-x64

7

$PLUGINSDIR/bfpqv.dll

windows7-x64

3

$PLUGINSDIR/bfpqv.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    008b63c601e82e521fb3a7d8e5879026_JaffaCakes118

  • Size

    558KB

  • MD5

    008b63c601e82e521fb3a7d8e5879026

  • SHA1

    33faf848217439b7e07b1b11e531ed3963dd07aa

  • SHA256

    144dceb184e6cbbc92be6af23f818591ed1330a05a5909feaa7feeefe7263e8e

  • SHA512

    2e8b14c38e8881031d263551f9865cba284a57e715cd85afc3ff8971760805aa25bdec87b9b0f7489614aaa34a682533d40e5150bea8a005023795fdbd333e47

  • SSDEEP

    12288:P+cGV+45IY3RQcD1m+5yLA7/NpICJmNa5D0OXC39q9c:P+cGVVIY3+Im+5yKppW2BoJ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 008b63c601e82e521fb3a7d8e5879026_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/bfpqv.dll
    .dll windows:5 windows x86 arch:x86

    4f59203b07a1ba74d73d9097de6e35a9


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1429682535.ecccabfbdfgb