Overview

overview

7

Static

static

3

11d5d7a41e...18.exe

windows7-x64

7

11d5d7a41e...18.exe

windows10-2004-x64

7

$PLUGINSDI...bw.dll

windows7-x64

3

$PLUGINSDI...bw.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    11d5d7a41e2da767b4b2c87ec0c768cf_JaffaCakes118

  • Size

    581KB

  • MD5

    11d5d7a41e2da767b4b2c87ec0c768cf

  • SHA1

    f3dbc50c8f408eae5e842997fc9e7ea387e865c5

  • SHA256

    018b1974696af2bc1dd56e1e3d4d28e23b965d1674549601b4397087d46ee74b

  • SHA512

    27c0a5af2098ac0240dec1c48ffe2e5b65233059826dd077a05766d203fd5330b19346366932f92b6da6373d8aeadb6ffc3868f28db05d89d8f8d17276115775

  • SSDEEP

    12288:B1IC73yJg1PYuWJp9f++3QLa3nL0lqLbt3nQgfGA2reW4AfAcktWTEm4:BOwug1gxfZ3QLKniqN3nQgf6rH4ckWk

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 11d5d7a41e2da767b4b2c87ec0c768cf_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nraigbw.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431842551.fbhcabfbfbhi