Overview

overview

7

Static

static

3

f64a3bb695...18.exe

windows7-x64

7

f64a3bb695...18.exe

windows10-2004-x64

7

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDIR/utu.dll

windows7-x64

3

$PLUGINSDIR/utu.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    f64a3bb695e70c0127548433392a1c77_JaffaCakes118

  • Size

    569KB

  • MD5

    f64a3bb695e70c0127548433392a1c77

  • SHA1

    2c5b16df24c47f7060e3c4cf48a4533dde8921f1

  • SHA256

    05a5cf45c7baa301048c81de628056a495b2deb367d45bc9e83077d022161ca7

  • SHA512

    6e37e5bf2f217c0e60309b8f1bb3417c43c1d7537f37bcd2f069fc9e49a66873fd523cc3fcd7433f5089bef32391adc4b51d5ffe03fd10cfd9c4a67d9801217c

  • SSDEEP

    12288:9e0ihhw752SRfJBp0mlfQ72wXyS29g0r0lGdkVEqaMJLA0:9Ow7nRfJHBrgM0Yy

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • f64a3bb695e70c0127548433392a1c77_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsisunz.dll
    .dll windows:4 windows x86 arch:x86

    0f92772da9c737d2bac38919e9863980


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/utu.dll
    .dll windows:5 windows x86 arch:x86

    aedf5537f68b98ceed944aab166ef3d0


    Headers

    Imports

    Exports

    Sections

  • insHv14.bicabfcibhj