Overview

overview

7

Static

static

3

866454455d...18.exe

windows7-x64

7

866454455d...18.exe

windows10-2004-x64

7

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDIR/rax.dll

windows7-x64

3

$PLUGINSDIR/rax.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    866454455d51655ac4f2e19a6a8a31df_JaffaCakes118

  • Size

    572KB

  • MD5

    866454455d51655ac4f2e19a6a8a31df

  • SHA1

    9b6b5924580029e21a4334e2ce7c6b8ad29dbb0d

  • SHA256

    2040edbf2885437cf3a779741cf0b615346789476140746a77e82e2396f8c110

  • SHA512

    2a95a35e147e9a8918a7df6e24bc212acf0a8a6effc6694e26536eefdef5b03c930de36e05e7f2401f5e9c00b2473ed42e5a542bf3c4b6dfb394edff44c0f131

  • SSDEEP

    12288:o6+K03A9Dt11TCVMz+jFUeC3Cwi+67iQ1hEkDu:oOMU5CVTkDi77i6Da

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 866454455d51655ac4f2e19a6a8a31df_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/rax.dll
    .dll windows:5 windows x86 arch:x86

    aedf5537f68b98ceed944aab166ef3d0


    Headers

    Imports

    Exports

    Sections

  • insHv20.bcccabfdfjj