Overview

overview

7

Static

static

3

65a63ee530...18.exe

windows7-x64

7

65a63ee530...18.exe

windows10-2004-x64

7

$PLUGINSDI...ti.dll

windows7-x64

3

$PLUGINSDI...ti.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    65a63ee53042c14284714f08df5b3c01_JaffaCakes118

  • Size

    581KB

  • MD5

    65a63ee53042c14284714f08df5b3c01

  • SHA1

    57a5965fa5f9c3d63a2ad591f6cfdfb264bf1e10

  • SHA256

    05b1dc02b0dfd97c5cad929aafdede5ad153560011319a3dd06e8041f3f93221

  • SHA512

    c3fb4ef626039731f266533d2f3e26ca18f3014d8f83fc579a510b95ad39ecfe995d818689b0e8018e3465b4e4fb1224d586dc788109d2ffaf3a5128f3c5c5e4

  • SSDEEP

    12288:wPDJhNH8ZkXWykEr8369tNFMP8NdHXpZ2achJC4+7:w7Jbl+36tKPdhJ7S

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 65a63ee53042c14284714f08df5b3c01_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/cgibuti.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431831751.fbhcabfbfbef