Overview

overview

7

Static

static

3

14843e5875...18.exe

windows7-x64

7

14843e5875...18.exe

windows10-2004-x64

7

$PLUGINSDI...lb.dll

windows7-x64

3

$PLUGINSDI...lb.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    14843e5875239d24f10d89963fd6873e_JaffaCakes118

  • Size

    600KB

  • MD5

    14843e5875239d24f10d89963fd6873e

  • SHA1

    a6632f43d67231ef3b6d0d4d7d93bc9cce13cba2

  • SHA256

    3332ba3675dc307e16cab1a574afe1faf3b10f22f4ca52ce8020a735a0525dd5

  • SHA512

    8ea0dd7c49086f4c6bc017a822f38caaa289eeb26c8be63297a8b9b33e0dd48a141628915932d5112c374faf57c190cb2d378a3bdd0a2b3948ae1e5caded34d9

  • SSDEEP

    12288:3EouUUOkH++CcsK01u7OMigSLb2wX9JpqecmdNa273Ma4q:3E4IjCZ12ggIb2wX/UTmfa27caV

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 14843e5875239d24f10d89963fd6873e_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/csrozlb.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431615734.fbecabfbdebbc