Overview

overview

7

Static

static

3

328de18bf9...18.exe

windows7-x64

7

328de18bf9...18.exe

windows10-2004-x64

7

$PLUGINSDI...hg.dll

windows7-x64

3

$PLUGINSDI...hg.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    328de18bf93b8c2e431e8068996943c5_JaffaCakes118

  • Size

    577KB

  • MD5

    328de18bf93b8c2e431e8068996943c5

  • SHA1

    5d7618ed1f70d4bbd575cf8b8d51b0d95a6f1858

  • SHA256

    116d2455e50f2ff4f3b23cb7a69a26e8e2667cc932b760f604b27c42ed42bcc2

  • SHA512

    01424156255fc677a408b3504c30b3bcbd24be102c4347998988d546106bdf9c9a2ccbe94c3cc6fa8069293b26aa93b95ed1a0d03cd2d1f909f84efc102fdb66

  • SSDEEP

    12288:nU/k0LULPHOF8MQRctP9Gj3aDROUwD8iPPLf9UbWiAJdgE:nULLULPHOF8MJ9GuDROpZLlj3

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 328de18bf93b8c2e431e8068996943c5_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/dhihhg.dll
    .dll windows:5 windows x86 arch:x86

    fc7a1df3c59011588ea8521a464c1959


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1430632920.fdcabfbcaba