Overview

overview

7

Static

static

3

c022e461d2...18.exe

windows7-x64

7

c022e461d2...18.exe

windows10-2004-x64

7

$PLUGINSDI...ti.dll

windows7-x64

3

$PLUGINSDI...ti.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    c022e461d21553f1b540af39d5215610_JaffaCakes118

  • Size

    581KB

  • MD5

    c022e461d21553f1b540af39d5215610

  • SHA1

    dd12fa238dd13c7d4ba9556c25c1d39354af30c4

  • SHA256

    05b1e4f8c9865ea66b4a6ccfb6bf93bd859118617e13a53f82d91684360a3f95

  • SHA512

    590f848cafdfebf435ba0a4c8239d1dfdf48c58739c817b40bbdf8f06a1262662a9a45fddd3b9fc327be0b06f57c9a99cc97efbd27647fa53beb2fb8c3cbb8d5

  • SSDEEP

    12288:z+DJhNH8ZkXWykEr8369tNFMP8NdHXpZ2achJC4+i:zcJbl+36tKPdhJ7R

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • c022e461d21553f1b540af39d5215610_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/cgibuti.dll
    .dll windows:6 windows x86 arch:x86

    94972ed9e2d37f60c26f3ae754dd86dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • 1431831751.fbhcabfbfbef