Overview

overview

7

Static

static

3

44fefb3da3...18.exe

windows7-x64

7

44fefb3da3...18.exe

windows10-2004-x64

7

$PLUGINSDI...ti.dll

windows7-x64

3

$PLUGINSDI...ti.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    44fefb3da3977093c8f6e628b7b61920_JaffaCakes118

  • Size

    581KB

  • MD5

    44fefb3da3977093c8f6e628b7b61920

  • SHA1

    2a7f9c43a4681c2fff7a972b7d67ab639444cdb3

  • SHA256

    24bceb57b479c447b1abfe2be604c0bfdc6304f82cf0e831d74a430bdef98254

  • SHA512

    31188c16fbdabe26beea1fca61a14a1c8add12ec37e88ded0481ca2f7dbedc5cfeb5b15aa9b6daa5eec45303af629c0abf1a7c053270576d2a771680a6e37b79

  • SSDEEP

    12288:2sDJhNH8ZkXWykEr8369tNFMP8NdHXpZ2achJC4+A:22Jbl+36tKPdhJ7T

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 44fefb3da3977093c8f6e628b7b61920_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/cgibuti.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431831751.fbhcabfbfbcbc