Overview

overview

7

Static

static

3

9fc402139e...18.exe

windows7-x64

7

9fc402139e...18.exe

windows10-2004-x64

7

$PLUGINSDIR/lwegz.dll

windows7-x64

3

$PLUGINSDIR/lwegz.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    9fc402139e351eaa346acc179304fc71_JaffaCakes118

  • Size

    547KB

  • MD5

    9fc402139e351eaa346acc179304fc71

  • SHA1

    fe0d273965b35d1910a6301243af5d5d17f35f11

  • SHA256

    224e5a96f226e20d66e0ca7952673506e676f9c4c68740bab973dab0dc13aaaa

  • SHA512

    68b7c129791ad349ba80909bbc09a182bdfc21bd137aaae28aa9abce444112f8c4c0ec508091e912d52fbb26e1f0e071f0179ea84e0f07f83352c7f6fdaca48a

  • SSDEEP

    12288:5+ZxqKlnBd9F+rr+UwbMmOnOJd0+9Tyl6uln2mfVLlyWS:5+nqKlH9W+hICVul22yL

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 9fc402139e351eaa346acc179304fc71_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/lwegz.dll
    .dll windows:5 windows x86 arch:x86

    fc7a1df3c59011588ea8521a464c1959


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1428915735.ebdcabfbdfbbh