Overview

overview

7

Static

static

3

dd5c0c6218...18.exe

windows7-x64

7

dd5c0c6218...18.exe

windows10-2004-x64

7

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    dd5c0c62186a073428882d8a282b347c_JaffaCakes118

  • Size

    236KB

  • MD5

    dd5c0c62186a073428882d8a282b347c

  • SHA1

    8b8fce66aa4eb21963a7c3f9682703cb41e4aa42

  • SHA256

    04a38c42e93ebae812184f0661ac7d2d31bcad28db61e16bb7897ce9a91e8076

  • SHA512

    480ee2ec47d4a4041885b4c18bd847b43d5dd4c078990e788b657c5fd642446b3907a6a05194d8720c05800a7df6745a8fa14fde7630709583c953c71288f437

  • SSDEEP

    3072:hn77v00hEoDEtauaH0XImdyBkTAKhwaDcrGOhHmDIaH2tvhOEA1RJCir86SrSrv0:h740IJXDyBKF547s2t0EyL+taM

Score
3/10

Malware Config

Signatures

  • Unsigned PE 6 IoCs

    Checks for missing Authenticode signature.

Files

  • dd5c0c62186a073428882d8a282b347c_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    b34f154ec913d2d2c435cbd644e91687


    Headers

    Imports

    Sections

  • $PLUGINSDIR/StdUtils.dll
    .dll windows:5 windows x86 arch:x86

    7b79709c0d5576549eb261e3410f95f8


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/WinShell.dll
    .dll windows:4 windows x86 arch:x86

    a75c904bad153f5af2c37cfdf66eba5c


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    d31c5eb927119d00232e4d4b0e32fcdb


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsProcess.dll
    .dll windows:5 windows x86 arch:x86

    439074d1c01f7b16781bdf060930814a


    Headers

    Imports

    Exports

    Sections