07bfc1e77fd759bca8bdcccee582cfdb_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

07bfc1e77fd759bca8bdcccee582cfdb_JaffaCakes118
Size

326KB
MD5

07bfc1e77fd759bca8bdcccee582cfdb
SHA1

6c7d37d9cbc27ee0e2301fc401d9aa37f933f1fb
SHA256

983cf3dc5264319c753967d376fea0e243d79964c5c358db9eceed86be2bf9e2
SHA512

113582954d2f968d128d04b232d4d8a40798d6aa2fb66d6460f0f3ec5d1063228c066f0e8c14102913cc01f42c3c19564903720e706c9f00163bf20a0176e77c
SSDEEP

6144:vzCxUGUnujB55ifMh9M72KaSq+6MqQmk2rJ+TI:eaGgutjifMhS2hOwlAI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07bfc1e77fd759bca8bdcccee582cfdb_JaffaCakes118

Files

07bfc1e77fd759bca8bdcccee582cfdb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

708f9611dea690c2d33acae89ee48179

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeThread
VirtualAlloc
GetModuleHandleA
GlobalLock
GetExitCodeProcess
GetLastError
VirtualFree
ExitProcess
TlsAlloc
GetProcAddress
OpenMutexA
LocalLock
CreateEventA
GetCurrentThreadId
HeapFree
HeapAlloc
GetCurrentProcessId
Sleep
HeapReAlloc
RtlUnwind
LoadLibraryA
GetCurrentProcess
TerminateProcess
GetModuleFileNameA
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter

user32

RegisterClassA
GetDesktopWindow
IsZoomed
LoadIconA

gdi32

CreateDIBPatternBrushPt

ole32

CoCreateInstance
CoInitialize

psapi

GetWsChanges

msvfw32

ICCompressorFree
DrawDibStart

Sections

.text
Size: 108KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 304B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 201KB - Virtual size: 625KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wdata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

708f9611dea690c2d33acae89ee48179

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

psapi

msvfw32

Sections

.text Size: 108KB - Virtual size: 104KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 304B

.tls Size: 4KB - Virtual size: 2KB

.rsrc Size: 201KB - Virtual size: 625KB

.sdata Size: 512B - Virtual size: 512B

.wdata Size: 512B - Virtual size: 512B

.text
Size: 108KB - Virtual size: 104KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 304B

.tls
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 201KB - Virtual size: 625KB

.sdata
Size: 512B - Virtual size: 512B

.wdata
Size: 512B - Virtual size: 512B