Overview

overview

7

Static

static

3

3b223aa4a3...18.exe

windows7-x64

7

3b223aa4a3...18.exe

windows10-2004-x64

7

$PLUGINSDI...ty.dll

windows7-x64

1

$PLUGINSDI...ty.dll

windows10-2004-x64

1

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    3b223aa4a3a3a050a01ffe3d04ebd08d_JaffaCakes118

  • Size

    557KB

  • MD5

    3b223aa4a3a3a050a01ffe3d04ebd08d

  • SHA1

    0b3502fa86d05d7f275677d4e83b8d8f3ea5a226

  • SHA256

    215b5f447089cb9eab0978a17361a85d2da9021960752b3bee3cf6b72621b806

  • SHA512

    d7f9b5e73961c1eb169bf3adc137c1d9857714790518024289dbd83189267f69c3014cd20e6ef9b4c9a9cb86685892aa17feef0aecf179a9b1d94bd2932a189f

  • SSDEEP

    12288:ogCSkbBg4hVknQRQqP9SvTd0rDrBtNui4B9xC/pE+2SzkOfyi:otSIBV7RAdCmBkzkOT

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 3b223aa4a3a3a050a01ffe3d04ebd08d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/hlvrsaty.dll
    .dll windows:5 windows x86 arch:x86

    4f59203b07a1ba74d73d9097de6e35a9


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1429887735.ececabfbcicf