Overview

overview

7

Static

static

3

14e27d5978...18.exe

windows7-x64

7

14e27d5978...18.exe

windows10-2004-x64

7

$PLUGINSDIR/ggh.dll

windows7-x64

3

$PLUGINSDIR/ggh.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    14e27d59785e2638940cb1ac33626780_JaffaCakes118

  • Size

    564KB

  • MD5

    14e27d59785e2638940cb1ac33626780

  • SHA1

    f5a9a7077576e5d207d0c6f6bffdb14cbcab440b

  • SHA256

    b91403a605b4e49bf39e86a48b3336dcaf6b7b411962f7a2e3b24ada439d0fbb

  • SHA512

    5c3a99bac68db5146b990c0304fd3b847b260ce82a278ca200637f7f241f7aa3774384c6083aafa2aac8061f661bd72427eaa93c6e843f4818f6eb288ab39560

  • SSDEEP

    12288:X+swqwd8rGsA4kKARRr/u5HHO4UVZR2BdQc1jCT8cpI3bmV:X+s4d8aV4ORB2LWR2B+cupQ4

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 14e27d59785e2638940cb1ac33626780_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/ggh.dll
    .dll windows:5 windows x86 arch:x86

    694964f2ca509d78674ef70151958664


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • insHv6.bcbcabecabfi