Overview

overview

7

Static

static

3

06da38bcd6...18.exe

windows7-x64

7

06da38bcd6...18.exe

windows10-2004-x64

7

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    06da38bcd694ca2da3b13e9a78a7b530_JaffaCakes118

  • Size

    648KB

  • MD5

    06da38bcd694ca2da3b13e9a78a7b530

  • SHA1

    6a57236694a90f0116f637cd548904403d282881

  • SHA256

    fa0d319ff2f044980c376bf4a19c915ab331e9dc6796fc7b7a8422a5ece578b1

  • SHA512

    118af849129f35db9cb94e72274d8485561fe69257537dbaac4665b276c7b4e6cf815552acf9f75a9197171a1be8112f00fd87b990d95a249f8b6251d0c22765

  • SSDEEP

    12288:/4C8Fs2pPcx5AL6AnR9SUCnp4XS3h1GvLzZUBlG7BX4uU7:/4XVPcHq609LqKSR1QZt4

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 06da38bcd694ca2da3b13e9a78a7b530_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/hwkqgss.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1430995618.fbacabfbcaid