618f32a682ecea400705f49f7d087dc2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

618f32a682ecea400705f49f7d087dc2_JaffaCakes118
Size

350KB
MD5

618f32a682ecea400705f49f7d087dc2
SHA1

d571abeaf5344e0bc3f477fcde6564c9cf41502d
SHA256

b2422f479fa3b3fcf114068d4f8d511e2fd6c51a4ebe1a70961e215efc75d326
SHA512

33251e82378adaab77bfefd14209f9463895707f3c382ed1483c6bc4a29a84f845b5ff3675f27337bdf993ca35f0270aa2945e696b4e4147116ba49b78b24a1a
SSDEEP

6144:wLzevg1OT0bbxRcvT+NOcM9pL3jAisGoSCzQOE3JhsNasvJNDwA8MYkze28LI4:EeIOAbbxRcci9aiCzQN3nskKJNBZYomb

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Anti_INT_1.exe
unpack001/Anti_Mov_0.exe
unpack001/Natas.exe

Files

618f32a682ecea400705f49f7d087dc2_JaffaCakes118
.zip
Anti-traceo.doc
.doc windows office2003
Anti_INT_1.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.gpch
Size: 1024B - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gpch
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gpch
Size: 80B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Anti_Mov_0.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.gpch
Size: 1024B - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gpch
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gpch
Size: 80B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Natas.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.gpch
Size: 1024B - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gpch
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gpch
Size: 80B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.gpch Size: 1024B - Virtual size: 40KB

.gpch Size: 9KB - Virtual size: 12KB

.rsrc Size: 512B - Virtual size: 4KB

.gpch Size: 80B - Virtual size: 80B

Headers

File Characteristics

Sections

.gpch Size: 1024B - Virtual size: 40KB

.gpch Size: 9KB - Virtual size: 12KB

.rsrc Size: 512B - Virtual size: 4KB

.gpch Size: 80B - Virtual size: 80B

Headers

File Characteristics

Sections

.gpch Size: 1024B - Virtual size: 40KB

.gpch Size: 9KB - Virtual size: 12KB

.rsrc Size: 512B - Virtual size: 4KB

.gpch Size: 80B - Virtual size: 80B

.gpch
Size: 1024B - Virtual size: 40KB

.gpch
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 512B - Virtual size: 4KB

.gpch
Size: 80B - Virtual size: 80B

.gpch
Size: 1024B - Virtual size: 40KB

.gpch
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 512B - Virtual size: 4KB

.gpch
Size: 80B - Virtual size: 80B

.gpch
Size: 1024B - Virtual size: 40KB

.gpch
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 512B - Virtual size: 4KB

.gpch
Size: 80B - Virtual size: 80B