Overview

overview

7

Static

static

3

0f78bcefe4...18.exe

windows7-x64

7

0f78bcefe4...18.exe

windows10-2004-x64

7

$PLUGINSDI...gp.dll

windows7-x64

3

$PLUGINSDI...gp.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    0f78bcefe4120ce485cdd4bfb4abdb34_JaffaCakes118

  • Size

    677KB

  • MD5

    0f78bcefe4120ce485cdd4bfb4abdb34

  • SHA1

    efbc6b66abd7c2f01d7ca1754a920c9662d9763f

  • SHA256

    138a6ab6e7a7313db8d27ac1c30c50227d4495ed066a263cedb50a91ee46f4dc

  • SHA512

    213ee53a1d42397d6d2b979aeec40d7e1717fe0706009e2bbebc4cf336da284ea2798ac379e667f27a11e2d2da267a9f9acaf93eedab0708d2bf113318b3ad7a

  • SSDEEP

    12288:SOcMcZef/XJqKooQcD7TLUokSTz3pQwRYrfX4x:SOcMrZLouLP3jYI

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 0f78bcefe4120ce485cdd4bfb4abdb34_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/fhhuygp.dll
    .dll windows:6 windows x86 arch:x86

    ef0395c3130920c1f8c8dc12ea63a782


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1432166482.fcbcabficce