Overview

overview

7

Static

static

3

330915b1e3...18.exe

windows7-x64

7

330915b1e3...18.exe

windows10-2004-x64

7

$PLUGINSDIR/gxr.dll

windows7-x64

3

$PLUGINSDIR/gxr.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    330915b1e3dfd79f8d6b92165c8a3cc7_JaffaCakes118

  • Size

    582KB

  • MD5

    330915b1e3dfd79f8d6b92165c8a3cc7

  • SHA1

    088f4219672384cf1df456b4f657d2a9a3c254a9

  • SHA256

    13113e1cc505ab10259ee5da727cfb94bf600e78fbb03c1f31754777c382f1dc

  • SHA512

    c93662a49609f101ee17a5628a930f430700b008bf2f7247a0d88ef2c482b61d75a5e1ceaa78e5df5a7b9f7ff66813a59695bce7a86e6d3cc72a34a074d02806

  • SSDEEP

    12288:MBZ9/I4pspAdLguCGXwPqx3WJetSxfV7DjY/Xr4:MT9NpspAVEGgPhJetSxfR9

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 330915b1e3dfd79f8d6b92165c8a3cc7_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/gxr.dll
    .dll windows:5 windows x86 arch:x86

    aedf5537f68b98ceed944aab166ef3d0


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • insHv69.cbcabfiegi