f44e3e49d6f99fff7e21bd3df52b9f2e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f44e3e49d6f99fff7e21bd3df52b9f2e_JaffaCakes118
Size

67KB
MD5

f44e3e49d6f99fff7e21bd3df52b9f2e
SHA1

13cf24e19b93bf009c995b51f9e646ac70e0268c
SHA256

53c03264aba00485b7e280d1e291fe8997ac81dd7de0f59d53e6e8f6fac6655b
SHA512

050af385b5a53b9e0a83a4a924416347628c5d9bdd9412b2b419fb92ac141e82ad3213bf17d99ecb315efc64b2f156b529b75f347397dbe0a8077d88aeea072d
SSDEEP

384:JtiLtrFxJlzUEXYxsZClkwSwCRmiYPoboW/iizNlSC0MXxibXSRAPuWk5Hw0Vd5j:y1pClzghD5k5SUWwM/ErTxjWSPC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f44e3e49d6f99fff7e21bd3df52b9f2e_JaffaCakes118

Files

f44e3e49d6f99fff7e21bd3df52b9f2e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

757f3d2337c789dd61ef10c129e0de5e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ord513
ord822
ord795
ord511
ord793
ord447
ord444
ord377
ord722
ord406
ord318
ord443
ord364
ord512
ord811
ord594
ord304
ord309
ord657
ord419
ord517
ord509
ord515
ord346
ord765
ord476
ord329
ord441
ord397
ord550
ord551
ord574
ord291
ord558
ord305
ord784
ord312
ord553
ord544
ord849
ord307
ord395
ord362
ord248
ord565
ord497
ord560
ord855
ord864
ord365
ord216
ord503
ord858
ord415
ord827

user32

ord251
ord451
ord93
ord318
ord421
ord143
ord12
ord187
ord525
ord569
ord406
ord147
ord279
ord55
ord592
ord417
ord415
ord256
ord185
ord473
ord341
ord579
ord396
ord343
ord255
ord54
ord581
ord183
ord344
ord535
ord254
ord237
ord249
ord212
ord498
ord671
ord536
ord425
ord486
ord513

gdi32

ord170
ord161
ord176
ord351
ord371

shell32

ord285
ord288
ord266

ole32

ord215
ord192
ord227
ord229
ord228

comctl32

ord17
ord23

facehelp

ord21
ord14
ord16
ord22
ord20
ord15

httpfile

ord8
ord11
ord6
ord7
ord3
ord9
ord2
ord1
ord10

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 979B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

757f3d2337c789dd61ef10c129e0de5e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

comctl32

facehelp

httpfile

Sections

.text Size: 30KB - Virtual size: 30KB

.rdata Size: 1024B - Virtual size: 979B

.data Size: 22KB - Virtual size: 24KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 30KB - Virtual size: 30KB

.rdata
Size: 1024B - Virtual size: 979B

.data
Size: 22KB - Virtual size: 24KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 3KB - Virtual size: 2KB