Overview

overview

7

Static

static

3

de9a1a21bc...18.exe

windows7-x64

7

de9a1a21bc...18.exe

windows10-2004-x64

7

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDIR/qqs.dll

windows7-x64

3

$PLUGINSDIR/qqs.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    de9a1a21bc1256e3c3cc8aae0bda024f_JaffaCakes118

  • Size

    564KB

  • MD5

    de9a1a21bc1256e3c3cc8aae0bda024f

  • SHA1

    01f9c744b3a6d7ca13b505f8b6b6b45aa651dce8

  • SHA256

    124b145d3bf26579d1b9cbecc60ec8339ca7d825193195a4cabed597f62b0192

  • SHA512

    6a27c9466c5086bdb642d681c7ee7713956e2b2ee7b81b3edc4a1a7dded4e7463eafb2488ac3f9bf967297529d530e6cc61140d5b1d21480525af9da51ca10f3

  • SSDEEP

    12288:hA7sY4KI6vLN4MKppw9Jq6yUOSsrp8AWmEtA+L2++4Oy:hAoYtvL6MKDUo6vcp8Azs2+P

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • de9a1a21bc1256e3c3cc8aae0bda024f_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/qqs.dll
    .dll windows:5 windows x86 arch:x86

    0d7fd4a8983b2a7c90efd972505b2b18


    Headers

    Imports

    Exports

    Sections

  • insHv16.bcbgcabedacag