Overview

overview

7

Static

static

3

28565a148e...18.exe

windows7-x64

7

28565a148e...18.exe

windows10-2004-x64

7

$PLUGINSDIR/lxpvq.dll

windows7-x64

1

$PLUGINSDIR/lxpvq.dll

windows10-2004-x64

1

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    28565a148e6c0a83075dc268e9fddf67_JaffaCakes118

  • Size

    557KB

  • MD5

    28565a148e6c0a83075dc268e9fddf67

  • SHA1

    86518dc948afca9a155818690b117120aca2d2ad

  • SHA256

    1454cface533f421f5a9cd4dc592bae02e389d8e99a1ef0d272eaeaf171a9367

  • SHA512

    77478f968616e74c7b26ad10e954ebc124eb20fcdc318ec38348c75ac39ed7ee19f5b5ce2af579f7dc76cbba4d3a06a172b8e96cab3caa4c65c7da09553e353d

  • SSDEEP

    12288:hGOn4+FfbJi2ebbkTpOphkojRjPTSsra5G:hGwYba4jRrx1

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 28565a148e6c0a83075dc268e9fddf67_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/lxpvq.dll
    .dll windows:5 windows x86 arch:x86

    fc7a1df3c59011588ea8521a464c1959


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • oo9.ddacabfcdjh