Overview

overview

7

Static

static

3

21f1b566bd...18.exe

windows7-x64

7

21f1b566bd...18.exe

windows10-2004-x64

7

$PLUGINSDI...ti.dll

windows7-x64

3

$PLUGINSDI...ti.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    21f1b566bdb4b3387ed393e31c271ba7_JaffaCakes118

  • Size

    581KB

  • MD5

    21f1b566bdb4b3387ed393e31c271ba7

  • SHA1

    31a5075ba3b08d6197edac5bd8afd1bf64922322

  • SHA256

    b584d78f57a7865df2c5c267661bd8db2010f7f8b6d13d1257ba757cf6f6fada

  • SHA512

    e29fd0e237911ae0b796f61402785e7242e961d5663720363a863192865100d34f9c74ff57cde77f27245f51de2ba0f3e460d783626448e4dda66cd8c188dc9e

  • SSDEEP

    12288:v+DJhNH8ZkXWykEr8369tNFMP8NdHXpZ2achJC4+A:vcJbl+36tKPdhJ7t

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 21f1b566bdb4b3387ed393e31c271ba7_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/cgibuti.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431831751.fbhcabfbfbcdi