Overview

overview

7

Static

static

3

4141b567f0...18.exe

windows7-x64

7

4141b567f0...18.exe

windows10-2004-x64

7

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDIR/qmxfz.dll

windows7-x64

1

$PLUGINSDIR/qmxfz.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    4141b567f022f18d5906c853b6a77537_JaffaCakes118

  • Size

    596KB

  • MD5

    4141b567f022f18d5906c853b6a77537

  • SHA1

    334fb13516be350ca2efd83e570a03d1dc516916

  • SHA256

    7c8f70ea2bf584b3927d5fb29dc333190a083253bb15a6c8c3e79573a62fbb70

  • SHA512

    12ffdc3ec42a5ad42d8aeda12ebc69198e554c31c30f0e64e6bf9963b3f3e55c8944675c022ad87664e31f6bc7d61197a10898caa0564ec052f02595f16b9854

  • SSDEEP

    12288:v3quqlGs8yl+eN0FOLI0Gd3TWLZtVrjVUte2rDypBQbFw:vJkblrN0FF0GJTs3KtJPti

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 4141b567f022f18d5906c853b6a77537_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/qmxfz.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • jj9.dcfcabfcdej