Overview

overview

7

Static

static

3

10d68be73b...18.exe

windows7-x64

7

10d68be73b...18.exe

windows10-2004-x64

7

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDIR/pecvq.dll

windows7-x64

3

$PLUGINSDIR/pecvq.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    10d68be73bb3ac246e2b5ad59501ca89_JaffaCakes118

  • Size

    558KB

  • MD5

    10d68be73bb3ac246e2b5ad59501ca89

  • SHA1

    919fb91fcb44b0d0ac4231faea9d73de5279d79c

  • SHA256

    7eb38e585d7674b776a550e08c75a090b379f930e56ee29eafe2651c97a4419e

  • SHA512

    2a8d78d2dbcdf270a16d6cb09814601dd5e1d45200c65167adb97f096f70cead8c3732a68e7689f936c53f437d96cd873034dd089002ac47a7d8383b38519374

  • SSDEEP

    6144:qFJ0aKMo+xwk6X74n6jQS1rjPQd+Fn+0Uq837kAT9TX0Eir3s8KgLJ/ByFGvIsk9:Ex/q5qyrsWnzOVs3s8KgLXxfhiRSTi1

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 10d68be73bb3ac246e2b5ad59501ca89_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/pecvq.dll
    .dll windows:5 windows x86 arch:x86

    8e9b5b6e436a7821e9e4cf0ea51b2d92


    Headers

    Imports

    Exports

    Sections

  • 1429390922.ebicabfbccbei