Overview

overview

7

Static

static

3

0e6cb2e2a8...18.exe

windows7-x64

7

0e6cb2e2a8...18.exe

windows10-2004-x64

7

$PLUGINSDIR/ngz.dll

windows7-x64

3

$PLUGINSDIR/ngz.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    0e6cb2e2a8978637f9aa95e23304573c_JaffaCakes118

  • Size

    580KB

  • MD5

    0e6cb2e2a8978637f9aa95e23304573c

  • SHA1

    4b0ddaa568b6fb543eca3c77753c611c6938fd26

  • SHA256

    7243d90d46d60a5f2c29e02ff27ad7bb1b84ded6a7e480bb6bb48cac86b08e70

  • SHA512

    4c1fec001086d66becaca197ebe46c3288cd18eb8847e2f8778dddbaec2bcb57b9cc617bbcc2cca1742a7b961d6e7c6112ac949c13e3d22bf50a7e6e64dc5215

  • SSDEEP

    12288:KI8xm/1OPd4L4MZt0W2KWhjs53GpDFXlrWw2aNHoEuQ1:KI8xLNMUNKWhjO3O5XxHNu

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 0e6cb2e2a8978637f9aa95e23304573c_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/ngz.dll
    .dll windows:5 windows x86 arch:x86

    fc7a1df3c59011588ea8521a464c1959


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • rc8.cbacabfccjd