Overview

overview

7

Static

static

3

a71764cd89...18.exe

windows7-x64

7

a71764cd89...18.exe

windows10-2004-x64

7

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDIR/yhxiz.dll

windows7-x64

1

$PLUGINSDIR/yhxiz.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    a71764cd892d9bb88439a0db200f6a66_JaffaCakes118

  • Size

    610KB

  • MD5

    a71764cd892d9bb88439a0db200f6a66

  • SHA1

    53891ca6c3d35d38fa6f2031a6648a20de47fd37

  • SHA256

    2145da0427ef21a0a93996a31e25c8bb8db0a1fedb23a3a90cb1acf528c79f72

  • SHA512

    3acadec19c6750248e68ac64704bb9426e26ec708aa1595f5ed216769c8017b54569f9795462fd9a8d9642a3f82108412891c1db71906fbadd75d84065ec2acf

  • SSDEEP

    12288:CbcbGRb5QqmLMlffwTJnlYDH+GROD0P162pExPcK3eK:CbFGqmQmHYDHf1pAcKO

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • a71764cd892d9bb88439a0db200f6a66_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/yhxiz.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • rr67.dbacabfiche