Overview

overview

7

Static

static

3

245c16cf58...18.exe

windows7-x64

7

245c16cf58...18.exe

windows10-2004-x64

7

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDI...lk.dll

windows7-x64

3

$PLUGINSDI...lk.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    245c16cf58648593709a3c5bc6718ab6_JaffaCakes118

  • Size

    677KB

  • MD5

    245c16cf58648593709a3c5bc6718ab6

  • SHA1

    32365ef3b730a7de4425c43c3743c05f4211dbc5

  • SHA256

    1c5fe07a7a65608af6665501522934ee8b3ed7fd2e179ae255a167117404972b

  • SHA512

    b119331d7574806c45d9ed4230c13226ef100a6c59c17d66e2375387b48b5a3a4a2aaa3d4f18af87c6ceac71277ae78351db7a6decf9a2d2a072ecd9f24b1b09

  • SSDEEP

    12288:lPUrfzVQkQRKI8KnAg3aMcJheKBmZDZIJ0c/zlRrGuOQuNpOGpjeN/S:l8rf5pE84aMbK30erSyq

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 245c16cf58648593709a3c5bc6718ab6_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/rzvqilk.dll
    .dll windows:6 windows x86 arch:x86

    ef0395c3130920c1f8c8dc12ea63a782


    Headers

    Imports

    Exports

    Sections

  • 1431993751.fbjcabfbfbbdi