a31339df125f7b5b735e7a4a77172558_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a31339df125f7b5b735e7a4a77172558_JaffaCakes118
Size

3.4MB
MD5

a31339df125f7b5b735e7a4a77172558
SHA1

bb82d446e3f0a77f4b64cab275df73351e45f223
SHA256

4b53e251b69373bb0eec41605284ec378e1ffc1b8eb7700b283ef4cb5d300761
SHA512

99ea1f737135ce57145ffad26d73edd29ac2a38c9b12a9f68e7caaabd3829de87ecd5045673bac8d9ef7f164f678be7b16ed1962a26eae9a3abc14148bf61640
SSDEEP

98304:7KcXPnOredBQB4NkXuleUw+Np4c91OYrpD4KOsZ:JfOreQ6eQeUbNp4Mf4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a31339df125f7b5b735e7a4a77172558_JaffaCakes118

Files

a31339df125f7b5b735e7a4a77172558_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

CreateCoreShell
GetSoundShell
_GetDecryptProc@4
_GetEncryptProc@4
_SetDecryptionKey@4

Sections

Size: 836KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 72KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 44KB - Virtual size: 15.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 196KB - Virtual size: 6.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.enigma1
Size: 108KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.enigma2
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

Size: 836KB - Virtual size: 2.2MB

Size: 72KB - Virtual size: 264KB

Size: 44KB - Virtual size: 15.6MB

Size: 4KB - Virtual size: 4KB

Size: - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 4KB

Size: 196KB - Virtual size: 6.6MB

.data Size: 1.9MB - Virtual size: 1.9MB

.enigma1 Size: 108KB - Virtual size: 4KB

.enigma2 Size: 244KB - Virtual size: 244KB

.rsrc
Size: 4KB - Virtual size: 4KB

.data
Size: 1.9MB - Virtual size: 1.9MB

.enigma1
Size: 108KB - Virtual size: 4KB

.enigma2
Size: 244KB - Virtual size: 244KB