Overview

overview

7

Static

static

3

056b8add9c...18.exe

windows7-x64

7

056b8add9c...18.exe

windows10-2004-x64

7

$PLUGINSDI...bw.dll

windows7-x64

3

$PLUGINSDI...bw.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    056b8add9c91d9a0e5348ee53797e891_JaffaCakes118

  • Size

    581KB

  • MD5

    056b8add9c91d9a0e5348ee53797e891

  • SHA1

    afaf9dc074d9c21acd235c7750ba22369185b19d

  • SHA256

    074fdc7cb3ca672378ccc3f297124006fdf396b4f94ce1dd9650b44ee9b0f513

  • SHA512

    3053199982789badc4b68c9e9b1078dbfc761e15e8d781446a666d16a4613bec30e37f5baaa54188ef5ea3844b74eba4c6a6ac800e097ec9f25ccae1e529c0c1

  • SSDEEP

    12288:k0C73yJg1PYuWJp9f++3QLa3nL0lqLbt3nQgfGA2reW4AfAcktWTEm8:k0wug1gxfZ3QLKniqN3nQgf6rH4ckWw

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 056b8add9c91d9a0e5348ee53797e891_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nraigbw.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431842551.fbhcabfbfbie