Overview

overview

9

Static

static

3

2f63e83519...18.exe

windows7-x64

7

2f63e83519...18.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$TEMP/footlambert.dll

windows7-x64

3

$TEMP/footlambert.dll

windows10-2004-x64

3

uninstall.exe

windows7-x64

9

uninstall.exe

windows10-2004-x64

9

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2f63e835191cb05d07914a932c6b6e73_JaffaCakes118

  • Size

    279KB

  • MD5

    2f63e835191cb05d07914a932c6b6e73

  • SHA1

    d7bc44cdf14e8ad74311e4251b428b67d82f8be8

  • SHA256

    c09b2c0f39539284df2e76d424de5b045b8ddb02267d8027da5a8ab3f9530a8c

  • SHA512

    1199dcfa1a74cddedb8c6988e368197313e32f0cb1a9f41cb3796997d99c6c44a19909e066c76fde0318e5354e3fc3f51d39ed555fa3fb9d2ff6414e95ad86e6

  • SSDEEP

    6144:LlJZfFoT3vF0cOS6XnL4IRaoFFljCwj8q9ySoWCxdzYY:LldS3v4VLPRayjd8xSczkY

Score
3/10

Malware Config

Signatures

  • Unsigned PE 7 IoCs

    Checks for missing Authenticode signature.

Files

  • 2f63e835191cb05d07914a932c6b6e73_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    e221f4f7d36469d53810a4b5f9fc8966


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    a89a235c853214d5f945ce4c2f607130


    Headers

    Imports

    Exports

    Sections

  • $TEMP/Dispraise.bin
  • $TEMP/footlambert.dll
    .dll windows:4 windows x86 arch:x86

    4f2dbe66b188017f2301420fa2b619ec


    Headers

    Imports

    Exports

    Sections

  • uninstall.exe
    .exe windows:4 windows x86 arch:x86

    e221f4f7d36469d53810a4b5f9fc8966


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    a89a235c853214d5f945ce4c2f607130


    Headers

    Imports

    Exports

    Sections