Overview

overview

7

Static

static

3

7fa17f7fe7...18.exe

windows7-x64

7

7fa17f7fe7...18.exe

windows10-2004-x64

7

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    7fa17f7fe7dcfaa467ffb8bdabe56da9_JaffaCakes118

  • Size

    244KB

  • MD5

    7fa17f7fe7dcfaa467ffb8bdabe56da9

  • SHA1

    b50e28e1ce751c4fd86736bc947d05858573e655

  • SHA256

    c468dd3069f79388cea75ffca6ee19a2e72b8fbb59e8f9b958cce2b0bf0b9a8b

  • SHA512

    9f7d36d05df5994b6b9103ef330a015b3e1cba8fe3f5e487028614c115e52e5db7b3c6c784ec56ac11536e12083b8b06e8d7b3589a53164dc8a810902a831860

  • SSDEEP

    3072:HuO9CtrA8AxmQYTy930XImdyBkTAKhwbcukHgaH2tvhOEA1RJCir86SrSrvrIa3t:OO94ruMQf6XDyBKFUD+gs2t0EyL+ta9

Score
3/10

Malware Config

Signatures

  • Unsigned PE 6 IoCs

    Checks for missing Authenticode signature.

Files

  • 7fa17f7fe7dcfaa467ffb8bdabe56da9_JaffaCakes118
    .exe windows:5 windows x86 arch:x86

    dc8d52d7bb9aec3a7e2ae53078ff6c6e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/StdUtils.dll
    .dll windows:5 windows x86 arch:x86

    7b79709c0d5576549eb261e3410f95f8


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/WinShell.dll
    .dll windows:4 windows x86 arch:x86

    a75c904bad153f5af2c37cfdf66eba5c


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    d31c5eb927119d00232e4d4b0e32fcdb


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsProcess.dll
    .dll windows:5 windows x86 arch:x86

    439074d1c01f7b16781bdf060930814a


    Headers

    Imports

    Exports

    Sections