f594ef06a54535d5a3e704c897840c0e_JaffaCakes118

General

Target

f594ef06a54535d5a3e704c897840c0e_JaffaCakes118
Size

873KB
MD5

f594ef06a54535d5a3e704c897840c0e
SHA1

c63dc4b054b08d6dd53e4c6a52d3f7c2da03ab79
SHA256

b85b8c7c9b562bf36e9fafac2d49d0ab94ee3bb74ae36f355fc5683075d2ed2d
SHA512

f7704f40604e7f25c974f60c4db9662e57df98237219bf19962e3309d5f9a381b4619d962bcc0655d4d92ba63d66d4670bbb97c05081f531f779d9c2eeaf2a7c
SSDEEP

24576:WF4Qt19HpcYFs5axkyfHSzaYDZvCgiK5bk8:WF4Q4YgDZb5g8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f594ef06a54535d5a3e704c897840c0e_JaffaCakes118

Files

f594ef06a54535d5a3e704c897840c0e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a7333743ef063a68d1d860bbdf1c328e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
VirtualAlloc

Sections

CODE
Size: 306KB - Virtual size: 644KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 513KB - Virtual size: 804KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 44KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a7333743ef063a68d1d860bbdf1c328e

Headers

File Characteristics

Imports

kernel32

Sections

CODE Size: 306KB - Virtual size: 644KB

CODE Size: 5KB - Virtual size: 12KB

CODE Size: - Virtual size: 8KB

CODE Size: 3KB - Virtual size: 16KB

CODE Size: - Virtual size: 48KB

.rsrc Size: 513KB - Virtual size: 804KB

CODE Size: 44KB - Virtual size: 48KB

CODE
Size: 306KB - Virtual size: 644KB

CODE
Size: 5KB - Virtual size: 12KB

CODE
Size: - Virtual size: 8KB

CODE
Size: 3KB - Virtual size: 16KB

CODE
Size: - Virtual size: 48KB

.rsrc
Size: 513KB - Virtual size: 804KB

CODE
Size: 44KB - Virtual size: 48KB