Overview

overview

7

Static

static

3

21e77cc5dd...18.exe

windows7-x64

7

21e77cc5dd...18.exe

windows10-2004-x64

7

$PLUGINSDI...lv.dll

windows7-x64

3

$PLUGINSDI...lv.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    21e77cc5dd5196e54fa4466b0dc60736_JaffaCakes118

  • Size

    581KB

  • MD5

    21e77cc5dd5196e54fa4466b0dc60736

  • SHA1

    ee2e02d715e932111e7a02963686f0ff60ec66e1

  • SHA256

    50b3164a9e5921a948da358ca2513c7519e8c2ab48887aff5ba04a476627de83

  • SHA512

    84fbf1472a235ff1f0b4f81d5c2e10495a9134fd6e48194a3aa33a0bdaa9f5c2fe7bbdfbe05d6cd7d540ef73ff00028ea6ab650343c07c11d5e8479eb8899381

  • SSDEEP

    12288:bCm7Owuz/MNfrcmbuZuhmtQ87BvzjCt5QAMgHnOO4vg:b/OBMNzRbwCoZCtyPrOd

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 21e77cc5dd5196e54fa4466b0dc60736_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/cfcnylv.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431853351.fbhcabfbfbbcf