Overview

overview

7

Static

static

3

0516aa5e87...18.exe

windows7-x64

7

0516aa5e87...18.exe

windows10-2004-x64

7

$PLUGINSDI...bw.dll

windows7-x64

3

$PLUGINSDI...bw.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    0516aa5e8761d81480500bf323e4f9ea_JaffaCakes118

  • Size

    581KB

  • MD5

    0516aa5e8761d81480500bf323e4f9ea

  • SHA1

    77a7ca1f572a6fc719804f22c6dabd08fa782b31

  • SHA256

    11ef7f7dd7d0a6abbd86c47725ed507c6b65819ddb844d1255dccab44056342a

  • SHA512

    ad9e395777cd3d0bd34797407651936b1ee9a8fa3f3286171272a62eb3e5f3fa167a55960ada1e4b6dd873084fa9640b798b62d002cca40dc55ffe9d30e07eca

  • SSDEEP

    12288:rVC73yJg1PYuWJp9f++3QLa3nL0lqLbt3nQgfGA2reW4AfAcktWTEmm:rVwug1gxfZ3QLKniqN3nQgf6rH4ckWS

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 0516aa5e8761d81480500bf323e4f9ea_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nraigbw.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431842551.fbhcabfbfbbe