Overview

overview

7

Static

static

3

2eb36686f6...18.exe

windows7-x64

7

2eb36686f6...18.exe

windows10-2004-x64

7

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDI...he.dll

windows7-x64

3

$PLUGINSDI...he.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2eb36686f6a5f04709cabeb89f01841a_JaffaCakes118

  • Size

    631KB

  • MD5

    2eb36686f6a5f04709cabeb89f01841a

  • SHA1

    8a87c1be82ecec7465b92ffecbb6d2ba27d301b9

  • SHA256

    20a0e497b019e7ac4860e1dbc0b3aec4ac40de8dfab70ec0734705e4a1e429e7

  • SHA512

    b6657ec62fe5e7c0c4d07f6177854ef0debdfd8b70b8fb7e4d1daef58a8a474e4b8470fa6fb3d0dcace82fd2a2b187684f2defed016d65bc598e115beb033245

  • SSDEEP

    12288:g4dFPmV2T8+UnPLfdxNFt2G/NVNHYqVEf4O8unAL2KG7LdUa9rkufR:g4mET8xL1xNVPHYqEf48PLdUapZ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 2eb36686f6a5f04709cabeb89f01841a_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/vbzsvjhe.dll
    .dll windows:5 windows x86 arch:x86

    4f59203b07a1ba74d73d9097de6e35a9


    Headers

    Imports

    Exports

    Sections

  • 1430913720.fgcabfbcabff