Overview

overview

7

Static

static

3

6e61b64abe...18.exe

windows7-x64

7

6e61b64abe...18.exe

windows10-2004-x64

7

$PLUGINSDIR/fcgwp.dll

windows7-x64

3

$PLUGINSDIR/fcgwp.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    6e61b64abe172a49c3406ca625840db2_JaffaCakes118

  • Size

    574KB

  • MD5

    6e61b64abe172a49c3406ca625840db2

  • SHA1

    fda7a2ad4b2db841e0148795353d48a957493d2b

  • SHA256

    16a09782ad6ba5299dafd1d38711e22b81e93a443ba37b3758b3a186a658b1da

  • SHA512

    fa81385a03f028224c21e0ba25a9cd7fed2749099982ec32928a1534d106850a51c447fc600ca0cb5a2c9f0a83b1bca0e9b5a8cdaefbb76a42d9dc50200c1948

  • SSDEEP

    12288:KLX0OuJpdqq9fnDWyoMgjlAeoAZyo5h8gFsCcXRen+S0+i49:KLX0OWztIyoMgBD/84GDS0+B

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 6e61b64abe172a49c3406ca625840db2_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/fcgwp.dll
    .dll windows:5 windows x86 arch:x86

    fc7a1df3c59011588ea8521a464c1959


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1429066920.ebfcabfbcacce