Overview

overview

3

Static

static

3

43e7e96ff4...18.exe

windows7-x64

3

43e7e96ff4...18.exe

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

UtilDanawaC.exe

windows7-x64

1

UtilDanawaC.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    43e7e96ff4f66ec1ab7730ec84b6dee8_JaffaCakes118

  • Size

    346KB

  • MD5

    43e7e96ff4f66ec1ab7730ec84b6dee8

  • SHA1

    6c4d4819eb1dd185352e59df10373f02e3d1d43a

  • SHA256

    37433c8e92a6ae699ae194d3427b9279fbd2e5004cf62db1675e6bf9f478512e

  • SHA512

    72823745f36ab8824b7bee4028c8226a67f9066d237300d3b1c7dacc7ddc354f1fbcdbcf0187a6dd25d39690fbe25fb7546510262821aa6467dc11e15711069e

  • SSDEEP

    6144:Te341ISGpIQP08N4PLvFzxEo2HoNqP6jpApKv4zxbDdRtxML713rpz:rhfQPZUxx8HoNJjakv4zVD/G13x

Score
3/10

Malware Config

Signatures

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 43e7e96ff4f66ec1ab7730ec84b6dee8_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/KillProcDLL.dll
    .dll windows:4 windows x86 arch:x86

    0000020b36314254f6eca65a7ae713f4


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • Uninstall.exe.nsis
  • UtilDanawaC.exe
    .exe windows:4 windows x86 arch:x86

    03232bfa28f4164298c18370f425206c


    Code Sign

    Headers

    Imports

    Sections