Overview

overview

7

Static

static

3

2afe1c691b...18.exe

windows7-x64

7

2afe1c691b...18.exe

windows10-2004-x64

7

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDIR/xor.dll

windows7-x64

3

$PLUGINSDIR/xor.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2afe1c691b11fd78bb2e4cf17a7c41b6_JaffaCakes118

  • Size

    573KB

  • MD5

    2afe1c691b11fd78bb2e4cf17a7c41b6

  • SHA1

    cee2a7f3cd64e2e33d42d41dcc1888ce2528bdcd

  • SHA256

    215b2e27d8510834762005dcee543b9156ed5f25a75d7e60d1c322687bdbc403

  • SHA512

    a5b89b91b5aa5c310794aa581d9d6a84a1e711bb0610d085f866c45ded0be5067544aefac611450e9130173637ab60407b250991f358a2db1bc749fd803276a9

  • SSDEEP

    12288:Wm15UABeYyTOTLaocabuPR21MxanCQSVitA:WmzUA7yTrojCPRLxKCh4t

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 2afe1c691b11fd78bb2e4cf17a7c41b6_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/xor.dll
    .dll windows:5 windows x86 arch:x86

    aedf5537f68b98ceed944aab166ef3d0


    Headers

    Imports

    Exports

    Sections

  • insHv8.bcfcabfccbee