408b7405b0270b83652047b6ae677fec_JaffaCakes118

General

Target

408b7405b0270b83652047b6ae677fec_JaffaCakes118
Size

637KB
MD5

408b7405b0270b83652047b6ae677fec
SHA1

443438378557869e7c54d97533f6aed80ea5528f
SHA256

160261e56a2d325c5657ec9998717cbce5625fcb0459d8a032848ce59bbc7dcf
SHA512

00c29b29983b75291193d19230946cedceef3d2083ebba00645f0c6e6f4d71eb697b9d8adec03348295abfa334dcfe884f2f143760f610a2d6ac75f415e55c5c
SSDEEP

12288:0jdXPQhCpSeO4Al3sUZ7p0k0YdYWBJDruUMTZPo6J5sZ7oJ2TekVj3:ls4drJvuUMTZPo6JyZ7oUVVj3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
408b7405b0270b83652047b6ae677fec_JaffaCakes118

Files

408b7405b0270b83652047b6ae677fec_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Program Files\JJGame\PdbFile\TKMC.pdb

Exports

Exports

??0CxFile@@QAE@ABV0@@Z
??0CxFile@@QAE@XZ
??0CxIOFile@@QAE@ABV0@@Z
??0CxIOFile@@QAE@PAU_iobuf@@@Z
??0CxMemFile@@QAE@ABV0@@Z
??1CxFile@@UAE@XZ
??1CxIOFile@@UAE@XZ
??1CxImage@@UAE@XZ
??4CxFile@@QAEAAV0@ABV0@@Z
??4CxIOFile@@QAEAAV0@ABV0@@Z
??4CxMemFile@@QAEAAV0@ABV0@@Z
??_7CxFile@@6B@
??_7CxIOFile@@6B@
??_7CxImage@@6B@
??_7CxMemFile@@6B@
??_FCxIOFile@@QAEXXZ
??_FCxImage@@QAEXXZ
??_FCxMemFile@@QAEXXZ
??_OCxImage@@QAEXABV0@@Z
?Close@CxIOFile@@UAE_NXZ
?Eof@CxIOFile@@UAE_NXZ
?Error@CxIOFile@@UAEJXZ
?Flush@CxIOFile@@UAE_NXZ
?GetC@CxIOFile@@UAEJXZ
?GetS@CxIOFile@@UAEPADPADH@Z
?Open@CxIOFile@@QAE_NPBD0@Z
?PutC@CxFile@@UAE_NE@Z
?PutC@CxIOFile@@UAE_NE@Z
?Read@CxIOFile@@UAEIPAXII@Z
?Scanf@CxIOFile@@UAEJPBDPAX@Z
?Seek@CxIOFile@@UAE_NJH@Z
?Size@CxIOFile@@UAEJXZ
?Tell@CxIOFile@@UAEJXZ
?Write@CxIOFile@@UAEIPBXII@Z

Sections

.text
Size: 344KB - Virtual size: 340KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tqn
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

PDB Paths

Exports

Exports

Sections

.text Size: 344KB - Virtual size: 340KB

.rdata Size: 72KB - Virtual size: 68KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 32KB - Virtual size: 29KB

.tqn Size: 4KB - Virtual size: 4KB

.text
Size: 344KB - Virtual size: 340KB

.rdata
Size: 72KB - Virtual size: 68KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 32KB - Virtual size: 29KB

.tqn
Size: 4KB - Virtual size: 4KB