Overview

overview

7

Static

static

3

3b4d2c5dce...18.exe

windows7-x64

7

3b4d2c5dce...18.exe

windows10-2004-x64

7

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDIR/zzr.dll

windows7-x64

3

$PLUGINSDIR/zzr.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    3b4d2c5dce877bb2aa51c4767c896cc9_JaffaCakes118

  • Size

    575KB

  • MD5

    3b4d2c5dce877bb2aa51c4767c896cc9

  • SHA1

    954a40d77632cffee5e0bc3297f8121ddd8fec2d

  • SHA256

    04eabbd4664c0261bde2ed8564fce996e3c5c9fc24403f79870fc169a8e6e090

  • SHA512

    2bb5cfbb7359f40c3f898be21b6dda1ce77eca7dee9e99af4c7f92c242c45df5aa2a96d250ebff056004ebc5a83c68d0df0b10d58f1f652df45ff7afb66ae0c2

  • SSDEEP

    12288:Kd7pPZ2C6SWBKBlky0nzloZzMbXD9C8Jx/GgHbnKmnstomlj8:KHRqCQlBK4bXRF/fnlst0

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 3b4d2c5dce877bb2aa51c4767c896cc9_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/zzr.dll
    .dll windows:5 windows x86 arch:x86

    694964f2ca509d78674ef70151958664


    Headers

    Imports

    Exports

    Sections

  • insHv6.bbcfcabecabfa