eb0ec381786f727c4ab457f8500d62b7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

eb0ec381786f727c4ab457f8500d62b7_JaffaCakes118
Size

433KB
MD5

eb0ec381786f727c4ab457f8500d62b7
SHA1

f5b796625d4c2c3378ce1e948d51a7e0a7359591
SHA256

25f293485a67a6768e9a890a93b3892b3d25bcdb23646497cc08a5ebd559d28b
SHA512

7937d9edc4b98adeeaf3484b7058675d0d094cbac07cc141b58482c9840d7060160992550d8e685086869f831b71aeb81fe79d7ba57ff74516bb022891a48477
SSDEEP

6144:KiGv/Qv6I3imx4ZMxvgNqmmq6puTa0h1rN6pNetF2ByQdglBMm8kyo6mZniS+S6v:Av/QyhHZMEBTFlks5QY2mVQS+SPSS+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb0ec381786f727c4ab457f8500d62b7_JaffaCakes118

Files

eb0ec381786f727c4ab457f8500d62b7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f6deacd38f85c31f6f827d9820a15cfb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42u

ord823
ord825

advapi32

RegQueryValueExW
RegisterEventSourceW
ReportEventW

ole32

CoCreateInstance

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.upx
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.upack
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.aspack
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.usaa
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.uaan
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.uaak
Size: 403KB - Virtual size: 404KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f6deacd38f85c31f6f827d9820a15cfb

Headers

DLL Characteristics

File Characteristics

Imports

mfc42u

advapi32

ole32

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 3KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 4KB

.upx Size: 1024B - Virtual size: 4KB

.upack Size: 1024B - Virtual size: 4KB

.tls Size: 1024B - Virtual size: 4KB

.aspack Size: 1024B - Virtual size: 4KB

.usaa Size: 1024B - Virtual size: 4KB

.uaan Size: 1024B - Virtual size: 4KB

.uaak Size: 403KB - Virtual size: 404KB

.rsrc Size: 11KB - Virtual size: 32KB

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 3KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 4KB

.upx
Size: 1024B - Virtual size: 4KB

.upack
Size: 1024B - Virtual size: 4KB

.tls
Size: 1024B - Virtual size: 4KB

.aspack
Size: 1024B - Virtual size: 4KB

.usaa
Size: 1024B - Virtual size: 4KB

.uaan
Size: 1024B - Virtual size: 4KB

.uaak
Size: 403KB - Virtual size: 404KB

.rsrc
Size: 11KB - Virtual size: 32KB