08791a2845ed29451645ac45107d18e0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

08791a2845ed29451645ac45107d18e0_JaffaCakes118
Size

393KB
MD5

08791a2845ed29451645ac45107d18e0
SHA1

7d4f25bc01edca2d457cd0262669817fc5736611
SHA256

abbd16fc161baf929d76dd3ae528b45efdd18da8e03bd0c7d006f5c52d4cf40e
SHA512

85695e7ad9149dfa005557e162296cadb71efe683f8f8cb5be414a063d1206ad5f8a48502e96d0f730c12cb0db200b93f615954535c8b7ba41bf5fea247c9223
SSDEEP

6144:+J00tRm5KMuIb9k/BVAcVurMCaQAGNCyyisdCPm0XELANx1XGP2YJHYT47NpK0:Z0tRm5KMuu6/McsI9QAG0P6ELAFGnpK0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08791a2845ed29451645ac45107d18e0_JaffaCakes118

Files

08791a2845ed29451645ac45107d18e0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b461830ed0cb44b936dc346585414a71

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetProcAddress
GetModuleHandleW
WaitForSingleObject
ExitProcess
lstrcatW

user32

GetMenuDefaultItem
GetKBCodePage
CharUpperBuffA
GetMenuCheckMarkDimensions
CharUpperBuffW

advapi32

AllocateAndInitializeSid

Sections

b
Size: 2KB - Virtual size: 992B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

m
Size: 2KB - Virtual size: 719B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

t
Size: 2KB - Virtual size: 772B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.9102
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

t
Size: 2KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

t
Size: 2KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

F
Size: 224KB - Virtual size: 224KB

IMAGE_SCN_MEM_READ

c
Size: 324KB - Virtual size: 324KB

IMAGE_SCN_MEM_READ

L
Size: 320KB - Virtual size: 320KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b461830ed0cb44b936dc346585414a71

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

Sections

b Size: 2KB - Virtual size: 992B

m Size: 2KB - Virtual size: 719B

t Size: 2KB - Virtual size: 772B

.9102 Size: 2KB - Virtual size: 1KB

.tls Size: 120KB - Virtual size: 118KB

t Size: 2KB - Virtual size: 8B

.RSRC Size: 1.8MB - Virtual size: 1.8MB

t Size: 2KB - Virtual size: 1.6MB

F Size: 224KB - Virtual size: 224KB

c Size: 324KB - Virtual size: 324KB

L Size: 320KB - Virtual size: 320KB

b
Size: 2KB - Virtual size: 992B

m
Size: 2KB - Virtual size: 719B

t
Size: 2KB - Virtual size: 772B

.9102
Size: 2KB - Virtual size: 1KB

.tls
Size: 120KB - Virtual size: 118KB

t
Size: 2KB - Virtual size: 8B

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

t
Size: 2KB - Virtual size: 1.6MB

F
Size: 224KB - Virtual size: 224KB

c
Size: 324KB - Virtual size: 324KB

L
Size: 320KB - Virtual size: 320KB