Overview

overview

7

Static

static

3

13ea4be058...18.exe

windows7-x64

7

13ea4be058...18.exe

windows10-2004-x64

7

$PLUGINSDI...lv.dll

windows7-x64

3

$PLUGINSDI...lv.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    13ea4be05801d3abf27834d3e44074f1_JaffaCakes118

  • Size

    581KB

  • MD5

    13ea4be05801d3abf27834d3e44074f1

  • SHA1

    0fca393b99d29dd03020f1da99a9e9c4bef69034

  • SHA256

    24699af0a4929ce4e7b424a3fef7f128a996ced9a4d8cb28e71594a1a3480c71

  • SHA512

    a812874d721a33e39653a00e5ceef0f42354d549f96d7ed31af5dd10434ddb4b1dfd6e6e8970904e97aed77339837767622987c8101a025040b51787ae040aa8

  • SSDEEP

    12288:wYm7Owuz/MNfrcmbuZuhmtQ87BvzjCt5QAMgHnOO4vK:wtOBMNzRbwCoZCtyPrOH

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 13ea4be05801d3abf27834d3e44074f1_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/cfcnylv.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431853351.fbhcabfbfbbfc