Overview

overview

7

Static

static

3

b30e683f88...18.exe

windows7-x64

7

b30e683f88...18.exe

windows10-2004-x64

7

$PLUGINSDI...gp.dll

windows7-x64

3

$PLUGINSDI...gp.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    b30e683f88f00b6d106c3c7a39306218_JaffaCakes118

  • Size

    677KB

  • MD5

    b30e683f88f00b6d106c3c7a39306218

  • SHA1

    681a8951d356d9e89ea06a86d70f23901ebf144d

  • SHA256

    21afaabea4a7734e01dd0a76ddda7929a68499c066bc7a6de26ee9599fe6edbd

  • SHA512

    e2c0ca29822a1ccc0307354ed7bb8d0e44e5d5bd2eae720fa6efcbee8079bdfc183ec8c40f5dacae0329735ab6d23931303ba2886a2da78663b4265f1e0b97ff

  • SSDEEP

    12288:7QcMcZef/XJqKooQcD7TLUokSTz3pQwRYrfX4o:7QcMrZLouLP3jYP

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • b30e683f88f00b6d106c3c7a39306218_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/fhhuygp.dll
    .dll windows:6 windows x86 arch:x86

    ef0395c3130920c1f8c8dc12ea63a782


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1432166482.fcbcabficid