Overview

overview

7

Static

static

3

8440235b19...18.exe

windows7-x64

7

8440235b19...18.exe

windows10-2004-x64

7

$PLUGINSDIR/gxr.dll

windows7-x64

3

$PLUGINSDIR/gxr.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    8440235b19bc4b888d8bf2656d1fd51c_JaffaCakes118

  • Size

    582KB

  • MD5

    8440235b19bc4b888d8bf2656d1fd51c

  • SHA1

    044c368e18ab586b2bf151d1e57cc05f37bfae46

  • SHA256

    2184032f983220190d48a9f422af0a8c215dc40ef092e4e4a79d657cf30cccc7

  • SHA512

    d44c93941d9fd5c455aecf7d040ffe329aa0207b573dc151eaa1dcec8c630d6b9d5c34bcd3a7ae0b3a1b536b413a0c9c356ea1be1f8dcc6a882c410280fa5c14

  • SSDEEP

    12288:cyZ9/I4pspAdLguCGXwPqx3WJetSxfV7DjY/XrvV:c29NpspAVEGgPhJetSxfRa

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 8440235b19bc4b888d8bf2656d1fd51c_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/gxr.dll
    .dll windows:5 windows x86 arch:x86

    aedf5537f68b98ceed944aab166ef3d0


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • insHv69.cbcabfieef