f36261affed4b8cfadcdcd48191f33ba_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f36261affed4b8cfadcdcd48191f33ba_JaffaCakes118
Size

215KB
MD5

f36261affed4b8cfadcdcd48191f33ba
SHA1

bf5c3b2cf809638f36f1d57c93d2e3c77adc9478
SHA256

ae1fcf21a9587585d191b19daefbd42c2ce9b5e9205e7776e3896a9fba809d63
SHA512

085051c71e245ea3b2ce8366bae1925aa8c69be715bdcbc2a2051dcf083eb7763d9d7384db2dd71d948a37905ef03602c62160e3fc211111d454bca183c4563f
SSDEEP

3072:7w0t7TLH2EGrvEFudYdKLedyiX+LnZ+vdthi64KJHmNI:7w0t7TLWEulAKLeP6nsdtht+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f36261affed4b8cfadcdcd48191f33ba_JaffaCakes118

Files

f36261affed4b8cfadcdcd48191f33ba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cd1f33d9ef1efe32d6986631130c3518

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetVersionExA
lstrlenA
GetLastError
VirtualAlloc
VirtualAllocEx
LoadLibraryA
ExitProcess
GetProcAddress
ExitThread
lstrlenW
GetOEMCP
GetModuleHandleA
IsBadHugeReadPtr
IsBadReadPtr
LoadLibraryExA
GetACP

advapi32

RegCreateKeyA
RegLoadKeyA

user32

SetScrollPos
SetRect
SetScrollInfo

gdi32

GetObjectA
SetPixel
GetClipBox
GetDCOrgEx
SetBkMode
GetDIBits

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RSRC9
Size: 512B - Virtual size: 87B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RSRC4
Size: 512B - Virtual size: 378B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RSRC0
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RSRC6
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RSRC3
Size: 1024B - Virtual size: 657B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RSRC7
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd1f33d9ef1efe32d6986631130c3518

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

Sections

.text Size: 62KB - Virtual size: 61KB

.data Size: 143KB - Virtual size: 142KB

RSRC9 Size: 512B - Virtual size: 87B

RSRC4 Size: 512B - Virtual size: 378B

RSRC0 Size: 2KB - Virtual size: 1KB

RSRC6 Size: 2KB - Virtual size: 2KB

RSRC3 Size: 1024B - Virtual size: 657B

RSRC7 Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 936B

.text
Size: 62KB - Virtual size: 61KB

.data
Size: 143KB - Virtual size: 142KB

RSRC9
Size: 512B - Virtual size: 87B

RSRC4
Size: 512B - Virtual size: 378B

RSRC0
Size: 2KB - Virtual size: 1KB

RSRC6
Size: 2KB - Virtual size: 2KB

RSRC3
Size: 1024B - Virtual size: 657B

RSRC7
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 936B