Overview

overview

7

Static

static

3

278a4b4cf3...18.exe

windows7-x64

7

278a4b4cf3...18.exe

windows10-2004-x64

7

$PLUGINSDI...vw.dll

windows7-x64

1

$PLUGINSDI...vw.dll

windows10-2004-x64

1

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    278a4b4cf3a750990136feb49edb59f4_JaffaCakes118

  • Size

    548KB

  • MD5

    278a4b4cf3a750990136feb49edb59f4

  • SHA1

    1b3410c78e8eadac2d436088e299c6a22e853a1f

  • SHA256

    2242d24ae37d00b6b972e9785149b5681e76bd8a198126a26f7e28125de504f9

  • SHA512

    0f441000ca269415b29c0b5815a12497b3c8607f4b4a33959232e116e6fde42cb83ca6c7d2793ea3c9015b9e6779ac001ba3d6b09a28206695806185a0efa659

  • SSDEEP

    12288:I14FUEU0HfH4/BFVgEWfXcLCJKCxd2eTj4ZW0KS+aB/dT:IyUQHfH+FKHcLCACVEk0BT/

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 278a4b4cf3a750990136feb49edb59f4_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/dgowbqvw.dll
    .dll windows:5 windows x86 arch:x86

    4f59203b07a1ba74d73d9097de6e35a9


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1429812135.ecdcabfbdfccb