Overview

overview

7

Static

static

3

0871e7188e...18.exe

windows7-x64

7

0871e7188e...18.exe

windows10-2004-x64

7

$PLUGINSDIR/gxr.dll

windows7-x64

3

$PLUGINSDIR/gxr.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    0871e7188e0836bb94f7dc38e7f9da81_JaffaCakes118

  • Size

    582KB

  • MD5

    0871e7188e0836bb94f7dc38e7f9da81

  • SHA1

    919cbf963fbbdb3a69ddb65e384482cfc7e6e47c

  • SHA256

    21640b747a45ebe3660641bc8becbb6c0398662b4dc21d2530d74b0e5c1c8608

  • SHA512

    6570a4f1b00d4da79e9cf5f099c94eba8be6c9f9a2f86aee868052422fc16d4706a503194cd42ce1f3fad12b0d3bfc7fc6f68db9ecc2dacc8de062cdbae24a27

  • SSDEEP

    12288:eBolleyQA59fDq7njGzRyg/OlXPIovHEB2jF1fDjY/XrH:eGxx2jGnbovHEeFZ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 0871e7188e0836bb94f7dc38e7f9da81_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/gxr.dll
    .dll windows:5 windows x86 arch:x86

    aedf5537f68b98ceed944aab166ef3d0


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • insHv24.cccabfdjbeg