73d9b2c9800a6e3de25b7788338e781e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

73d9b2c9800a6e3de25b7788338e781e_JaffaCakes118
Size

1.7MB
MD5

73d9b2c9800a6e3de25b7788338e781e
SHA1

b52cfb3fe9405d4b141c5f9f81a204f5d0423466
SHA256

407abc3d20c4eccf73ab7452654ee5c5715995b16018fabd2c6c54d43acb8285
SHA512

722fa2e897b98bd9108604f68a2a80c2f3cdfc0778e7268671a5610127f7685876ae450ecf7e61453a4d5f946988fc4e592d99da2ac1ab339f2a0645ea5dc2f5
SSDEEP

24576:V2SrVoQxjsHkgCs8Jz8VMe/+GTdHq5zwMS4h9S/bhgm2PwshbKC:VRYHkgCz8+eWGZ2BAWPhX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73d9b2c9800a6e3de25b7788338e781e_JaffaCakes118

Files

73d9b2c9800a6e3de25b7788338e781e_JaffaCakes118
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

AmdPowerXpressRequestHighPerformance
Brainstorm
NvOptimusEnablement

Sections

Size: 137KB - Virtual size: 305KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 101KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 363KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 11KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vm_sec
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vw
Size: - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 16B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

Size: 137KB - Virtual size: 305KB

Size: 101KB - Virtual size: 352KB

Size: 1024B - Virtual size: 8KB

Size: 512B - Virtual size: 1B

.rsrc Size: 363KB - Virtual size: 363KB

Size: 11KB - Virtual size: 15KB

.edata Size: 512B - Virtual size: 4KB

.vm_sec Size: 16KB - Virtual size: 16KB

.idata Size: 512B - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

.vw Size: - Virtual size: 2.5MB

.boot Size: 1.0MB - Virtual size: 1.0MB

.reloc Size: 16B - Virtual size: 4KB

.rsrc
Size: 363KB - Virtual size: 363KB

.edata
Size: 512B - Virtual size: 4KB

.vm_sec
Size: 16KB - Virtual size: 16KB

.idata
Size: 512B - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

.vw
Size: - Virtual size: 2.5MB

.boot
Size: 1.0MB - Virtual size: 1.0MB

.reloc
Size: 16B - Virtual size: 4KB