Overview

overview

7

Static

static

3

91830fb858...18.exe

windows7-x64

7

91830fb858...18.exe

windows10-2004-x64

7

$PLUGINSDIR/nitoq.dll

windows7-x64

3

$PLUGINSDIR/nitoq.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    91830fb85813acd3bc578b9d97a500b2_JaffaCakes118

  • Size

    547KB

  • MD5

    91830fb85813acd3bc578b9d97a500b2

  • SHA1

    dfdead37e0da3fdd8a3d7cafda54a940a5348346

  • SHA256

    206c36e2948f5da8b33ac137d4ccd84ca2b6d0f0e0bb4c18dca47f60095a0385

  • SHA512

    513d7ea3e81a0508b0ef1e92aa2eff0b8d2a8659344861557b06a7f77ae020ff56c6fa81f297546291a9649a5009667ae056a7f9b346b696981087e843d78e6c

  • SSDEEP

    12288:Hc2iOx9ZwH3zSNfDT9xv4pbPII9i61ZKuKt+RJa:Hc2Dn0DQT9xQlPp15K2c

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 91830fb85813acd3bc578b9d97a500b2_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nitoq.dll
    .dll windows:5 windows x86 arch:x86

    fc7a1df3c59011588ea8521a464c1959


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1428894135.ebdcabfbdfbgg