Overview

overview

7

Static

static

3

60eb440b50...18.exe

windows7-x64

7

60eb440b50...18.exe

windows10-2004-x64

7

$PLUGINSDI...ti.dll

windows7-x64

3

$PLUGINSDI...ti.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    60eb440b50deecf53d4c1ccd102dbc6d_JaffaCakes118

  • Size

    581KB

  • MD5

    60eb440b50deecf53d4c1ccd102dbc6d

  • SHA1

    a8c2d11441adf64c807fea44738a332271e7639a

  • SHA256

    050235ac7752d4e87878f733ba539e3a64a23ca442653e3e1ca0a5ca8e55b913

  • SHA512

    67711f06c393f3d5128dd4319d1846d7e043e49f1e9ec086c11d05cff79694f9e363b5ec7330572cf241cdfb34cc7589dc6023ce1a2c73c0f847d5263e7caa37

  • SSDEEP

    12288:wfDJhNH8ZkXWykEr8369tNFMP8NdHXpZ2achJC4+6:wLJbl+36tKPdhJ7b

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 60eb440b50deecf53d4c1ccd102dbc6d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/cgibuti.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431831751.fbhcabfbfbef