Overview

overview

3

Static

static

3

StartRootkit.bat

windows7-x64

1

StartRootkit.bat

windows10-2004-x64

3

nvnsvc.exe

windows7-x64

1

nvnsvc.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    be216ebcf99a97e525d3dae73cd1d880_JaffaCakes118

  • Size

    72KB

  • MD5

    be216ebcf99a97e525d3dae73cd1d880

  • SHA1

    8608e6ca51aa13759bd9ee1358c34a94d002a757

  • SHA256

    070f50f1251bd40e826d571f116e9f76779cfcf5cc290e2d11b0dd9995474707

  • SHA512

    1f1e52b291b833cd8b4ffbd67c260118a85fa4642e75f104d94b1286332474af258d06d337fcc5df59af81091f2871dff46b655be828d92720ec98c13c750203

  • SSDEEP

    1536:M/Nv7hjLh9hkmKhVgCnIbnd3tcgr4vB6iBpJzkFkwiry:Qd3rOfnQdcgMvtkktry

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • be216ebcf99a97e525d3dae73cd1d880_JaffaCakes118
    .rar
  • StartRootkit.bat
  • nvnsvc.exe
    .exe windows:4 windows x86 arch:x86

    bd51a645a9c68bd03b2e51586e5cbdcb


    Headers

    Imports

    Sections

  • nvnvsc.ini