f8e5e817841225f195cd81015098559a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f8e5e817841225f195cd81015098559a_JaffaCakes118
Size

166KB
MD5

f8e5e817841225f195cd81015098559a
SHA1

256e3388d9383b71a73f34af35bb8efb05b53a26
SHA256

bed83aeaf439dbfd252b79f6eac5c97fa49d8915e6b05a2a7029052f5abf6497
SHA512

74b7439574281c0b59d51e1cc4f83f021c80a3cf8a88620d714583651e74a0efbb58a65453b6c03d693972af1f5382e2c2fe19c3d9726562cfab7906573e5546
SSDEEP

3072:QERTv4HNAoq0d0WB0sRO8hG/Uv/panu5vkFhKdZMgr7aR:G731B05gRvwKOeZMgr7C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f8e5e817841225f195cd81015098559a_JaffaCakes118

Files

f8e5e817841225f195cd81015098559a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8b99155f681213f8160348754d7a03a7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

gdi32

GetBkMode
CopyEnhMetaFileA
GetPaletteEntries

user32

IsCharUpperA
LoadIconA
DrawMenuBar
CreateMenu
GetFocus
DrawIconEx
wsprintfA
GetDlgItem
DrawFrameControl
GetMenuItemCount

kernel32

GetThreadLocale
LocalAlloc
WaitForSingleObject
ExitProcess
VirtualQuery
VirtualAllocEx
GetModuleHandleA
lstrlenA
VirtualFree

Exports

Exports

LdI@16

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 134KB - Virtual size: 193KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bbs
Size: 512B - Virtual size: 382B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 155B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 1024B - Virtual size: 649B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8b99155f681213f8160348754d7a03a7

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 10KB

.data Size: 134KB - Virtual size: 193KB

bbs Size: 512B - Virtual size: 382B

edata Size: 2KB - Virtual size: 1KB

.tls Size: 512B - Virtual size: 64B

.rdata Size: 512B - Virtual size: 24B

.idata Size: 512B - Virtual size: 155B

BSS Size: 1024B - Virtual size: 649B

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 10KB - Virtual size: 10KB

.data
Size: 134KB - Virtual size: 193KB

bbs
Size: 512B - Virtual size: 382B

edata
Size: 2KB - Virtual size: 1KB

.tls
Size: 512B - Virtual size: 64B

.rdata
Size: 512B - Virtual size: 24B

.idata
Size: 512B - Virtual size: 155B

BSS
Size: 1024B - Virtual size: 649B

.rsrc
Size: 15KB - Virtual size: 15KB