045e9e9b6fd45725ac8bb9bddb2fbd9f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

045e9e9b6fd45725ac8bb9bddb2fbd9f_JaffaCakes118
Size

500KB
MD5

045e9e9b6fd45725ac8bb9bddb2fbd9f
SHA1

ffcd0cf2e9b9b1df2ca274044896381da04113ab
SHA256

58d0f6f4d44eeb1f0c518e928948c3dbd69540bfdd84581ab91a94861ef5964f
SHA512

2d65054a3166e3b6de4d66725ea2ea4c08b7c236aeef5002b97d3f5b4999b63d5d7514e09f107b8f01f2fd3404ba5e585fac2388506092268c4f184109b6d5f2
SSDEEP

6144:f59UBzgPVwrzTiE/Hlf1ZMgqOaY2CGC8y2KyadiRsUoNCeULoS:GgUuEvlN6gjZZG7adi2UhfLp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
045e9e9b6fd45725ac8bb9bddb2fbd9f_JaffaCakes118

Files

045e9e9b6fd45725ac8bb9bddb2fbd9f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d320f75e61c720b3835786b532b4d8d5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowWindow
FindWindowExA

clusapi

ClusterNodeControl

kernel32

GetLastError
ScrollConsoleScreenBufferA
VirtualProtect
SetFileApisToANSI
SetErrorMode
GetCommProperties
UpdateResourceA
WTSGetActiveConsoleSessionId
ConvertDefaultLocale
GetModuleHandleA
GetConsoleWindow
VirtualQuery
FreeConsole

msvcrt

iswupper
memcpy
printf
sprintf
localeconv

Sections

.text
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 710B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 335KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

~)DIn:
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

-!3
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

48
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

)k)r)
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0xy
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yPEc#,H
Size: 120KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UQD4zu
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yjcwfD(3
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt0
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

:
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d320f75e61c720b3835786b532b4d8d5

Headers

File Characteristics

Imports

user32

clusapi

kernel32

msvcrt

Sections

.text Size: 100KB - Virtual size: 96KB

.rdata Size: 4KB - Virtual size: 710B

.data Size: 8KB - Virtual size: 335KB

.idata Size: 4KB - Virtual size: 1KB

~)DIn: Size: 8KB - Virtual size: 7KB

-!3 Size: 16KB - Virtual size: 13KB

48 Size: 32KB - Virtual size: 29KB

)k)r) Size: 16KB - Virtual size: 12KB

0xy Size: 12KB - Virtual size: 8KB

.crt Size: 40KB - Virtual size: 39KB

yPEc#,H Size: 120KB - Virtual size: 117KB

UQD4zu Size: 84KB - Virtual size: 82KB

yjcwfD(3 Size: 12KB - Virtual size: 11KB

.crt0 Size: 8KB - Virtual size: 7KB

: Size: 16KB - Virtual size: 13KB

DATA Size: 12KB - Virtual size: 11KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 100KB - Virtual size: 96KB

.rdata
Size: 4KB - Virtual size: 710B

.data
Size: 8KB - Virtual size: 335KB

.idata
Size: 4KB - Virtual size: 1KB

~)DIn:
Size: 8KB - Virtual size: 7KB

-!3
Size: 16KB - Virtual size: 13KB

48
Size: 32KB - Virtual size: 29KB

)k)r)
Size: 16KB - Virtual size: 12KB

0xy
Size: 12KB - Virtual size: 8KB

.crt
Size: 40KB - Virtual size: 39KB

yPEc#,H
Size: 120KB - Virtual size: 117KB

UQD4zu
Size: 84KB - Virtual size: 82KB

yjcwfD(3
Size: 12KB - Virtual size: 11KB

.crt0
Size: 8KB - Virtual size: 7KB

:
Size: 16KB - Virtual size: 13KB

DATA
Size: 12KB - Virtual size: 11KB

.rsrc
Size: 4KB - Virtual size: 3KB