Overview

overview

7

Static

static

3

641aefc753...18.exe

windows7-x64

7

641aefc753...18.exe

windows10-2004-x64

7

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDIR/nstnn.dll

windows7-x64

3

$PLUGINSDIR/nstnn.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    641aefc7537a6088bbb8e3da8b3a90f0_JaffaCakes118

  • Size

    624KB

  • MD5

    641aefc7537a6088bbb8e3da8b3a90f0

  • SHA1

    cedbd48c7e5e32896631c5b20a7177da3a38d180

  • SHA256

    e890fca949d7397134177736105cbf49df1914e1c62cb96488323e54aa77ae7c

  • SHA512

    c3641f19e285efaa876a64bd396d4756699d0cc2ffe22376ccc8621d76a423acb5d05115c886f4a29adf7532fd97abded8035d5aecbc0ee9fb9b82058e7cdc3e

  • SSDEEP

    12288:gWBzSNvCTAUJBOelNgt6FDc+yhorVIK/hIH9b4gR85ap/Mr9V/NyoaYXx:gWt/TAUJkelN+acJhoBIK/eHR4gR9psp

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 641aefc7537a6088bbb8e3da8b3a90f0_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nstnn.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • qq9.dcbcabfcdbgd