Overview

overview

7

Static

static

3

16b4999d4b...18.exe

windows7-x64

7

16b4999d4b...18.exe

windows10-2004-x64

7

$PLUGINSDI...ti.dll

windows7-x64

3

$PLUGINSDI...ti.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    16b4999d4b6b7f22ae9220e7163df5ea_JaffaCakes118

  • Size

    581KB

  • MD5

    16b4999d4b6b7f22ae9220e7163df5ea

  • SHA1

    5258f1bb8abc0a19c7a4618aad4951765baae7f7

  • SHA256

    07ad58a33f14ba98d07b67e74a8f424dcf6e83b6bfd7b003de3929cb2db63e1c

  • SHA512

    bc84e8a830c23d01073f3f763356dce8833f99173cab1db36d748888486d5543ebdf9e92ced4ab91eff8f00a29e86655b24add0d017e378040333d4c66e9370d

  • SSDEEP

    12288:+IQDJhNH8ZkXWykEr8369tNFMP8NdHXpZ2achJC4+4:+TJbl+36tKPdhJ7d

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 16b4999d4b6b7f22ae9220e7163df5ea_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/cgibuti.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431831751.fbhcabfbfbed