Overview

overview

7

Static

static

3

13bf3821ac...18.exe

windows7-x64

7

13bf3821ac...18.exe

windows10-2004-x64

7

$PLUGINSDI...ti.dll

windows7-x64

3

$PLUGINSDI...ti.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    13bf3821acb28b78c918bdf7c465bfaf_JaffaCakes118

  • Size

    581KB

  • MD5

    13bf3821acb28b78c918bdf7c465bfaf

  • SHA1

    9ad5fe69ddf711671fae93391b600c92205162bc

  • SHA256

    cd33a08a9e64b1d6c000914e5b62e2e5ff39e26786ab2c3fedea2fc77704e280

  • SHA512

    412734f931de0624b071f9c295857a9628e9192c61d48f0c8eeeb77dd2f61ee862887b8fb0f30da8b0519aa1ea845eafa74a4710eeb4f83ee96992a74f7bd40d

  • SSDEEP

    12288:T6DJhNH8ZkXWykEr8369tNFMP8NdHXpZ2achJC4+g:TYJbl+36tKPdhJ7z

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 13bf3821acb28b78c918bdf7c465bfaf_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/cgibuti.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431831751.fbhcabfbfbcbc