0f614b197c1b1db39cf29f7f60cca7a1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0f614b197c1b1db39cf29f7f60cca7a1_JaffaCakes118
Size

110KB
MD5

0f614b197c1b1db39cf29f7f60cca7a1
SHA1

1eca090e34898bd6b637f42ededb546c00414657
SHA256

e257ea2bd28fecab3d1eee2d8b6128d6ed182b98389bb9fa86ca8d649617281e
SHA512

d3773bcf9cbde6316b00687d92a4d9c7fd111c56fe687f36a63d5c49fe2ef0192efa7a6e071e72ce79e832b942deff43b15f7f53b114bdf5971bda981501c80b
SSDEEP

1536:tjQN43MAWBzDQR2J/Vtzu0Y30BRbGoIsW/EGGDXczTgApN9cqh8/S5Nsqdwq:tjQNDzDQcJg0zGoooXi9wXq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f614b197c1b1db39cf29f7f60cca7a1_JaffaCakes118

Files

0f614b197c1b1db39cf29f7f60cca7a1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3e1aaf26035d1f8704b039729a0e21e4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetCurrentThreadId
GetModuleHandleA
GetProcAddress
VirtualProtect

user32

CharNextA
MessageBoxA

Sections

CODE
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: - Virtual size: 452B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp1
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp2
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3e1aaf26035d1f8704b039729a0e21e4

Headers

File Characteristics

Imports

kernel32

user32

Sections

CODE Size: - Virtual size: 4KB

DATA Size: - Virtual size: 136B

BSS Size: - Virtual size: 1KB

.idata Size: - Virtual size: 768B

.tls Size: - Virtual size: 8B

.rdata Size: 512B - Virtual size: 24B

.vmp0 Size: - Virtual size: 452B

.rsrc Size: 1KB - Virtual size: 142KB

.vmp1 Size: - Virtual size: 11KB

.vmp2 Size: 107KB - Virtual size: 106KB

.reloc Size: 512B - Virtual size: 96B

CODE
Size: - Virtual size: 4KB

DATA
Size: - Virtual size: 136B

BSS
Size: - Virtual size: 1KB

.idata
Size: - Virtual size: 768B

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.vmp0
Size: - Virtual size: 452B

.rsrc
Size: 1KB - Virtual size: 142KB

.vmp1
Size: - Virtual size: 11KB

.vmp2
Size: 107KB - Virtual size: 106KB

.reloc
Size: 512B - Virtual size: 96B