69e783c15eae02db57c599d15e4cf81e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

69e783c15eae02db57c599d15e4cf81e_JaffaCakes118
Size

152KB
MD5

69e783c15eae02db57c599d15e4cf81e
SHA1

a27a634690f5d2fafe0efa669e4fe6aef47b34ed
SHA256

00b8d306a8328ed3bb0693ef756ea4d494af85c7af19be0d8d5306f32d20282c
SHA512

2c415df46eb5aca6633a622be89125527b7c57564af57862fd745641bed7bd29948ee24fb0f11a51207908a5d3a6c97fc05957f269428dc6fe29afb02081bf7c
SSDEEP

3072:S9rigXIEIK7f5cLhYK1P6U87XhrYaYSgmD/28P5Eb5JXfkY:S9rigXRIKDGd1P6d7RYaYED/2s2v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
69e783c15eae02db57c599d15e4cf81e_JaffaCakes118

Files

69e783c15eae02db57c599d15e4cf81e_JaffaCakes118
.exe windows:6 windows x86 arch:x86

1c83a212ad9d52f33a31ea08ac7e7d60

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

FrameRgn
GetROP2

pdh

PdhGetCounterTimeBase

kernel32

GetCurrentProcessId
SetThreadPriority
RegisterApplicationRestart
Heap32ListFirst
GetQueuedCompletionStatus
GetWindowsDirectoryW
CloseHandle
GetConsoleProcessList
GetTickCount
GetVersionExA
GetDynamicTimeZoneInformation

user32

GetDesktopWindow
GetWindowContextHelpId
LockWindowUpdate
TrackPopupMenuEx
GetWindowWord
IsWindow
IsCharAlphaNumericW
GetFocus

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 39B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 511B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CONST
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TFgg
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MmtxxaB
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 204B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c83a212ad9d52f33a31ea08ac7e7d60

Headers

File Characteristics

Imports

gdi32

pdh

kernel32

user32

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 6KB

.crt Size: 4KB - Virtual size: 39B

.crt Size: 4KB - Virtual size: 511B

CONST Size: 32KB - Virtual size: 28KB

.crt Size: 32KB - Virtual size: 28KB

TFgg Size: 32KB - Virtual size: 28KB

MmtxxaB Size: 16KB - Virtual size: 14KB

.rsrc Size: 4KB - Virtual size: 720B

.reloc Size: 4KB - Virtual size: 204B

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 6KB

.crt
Size: 4KB - Virtual size: 39B

.crt
Size: 4KB - Virtual size: 511B

CONST
Size: 32KB - Virtual size: 28KB

.crt
Size: 32KB - Virtual size: 28KB

TFgg
Size: 32KB - Virtual size: 28KB

MmtxxaB
Size: 16KB - Virtual size: 14KB

.rsrc
Size: 4KB - Virtual size: 720B

.reloc
Size: 4KB - Virtual size: 204B