152f5cf3851583b01c28ebca930c3193_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

152f5cf3851583b01c28ebca930c3193_JaffaCakes118
Size

78KB
MD5

152f5cf3851583b01c28ebca930c3193
SHA1

8c235f620959d1dea27733b5a6ef5df02e3bc276
SHA256

d037e023ed1fae559d3301027efd2f0a886d3fe593ef675ad42203ae62696a65
SHA512

a9de6e6e20a3e33b9a1843016a6c7cdf28cf2436a52f2b0ddefca696537b4338cbeeee3c278bba710558873413525b30b50d70afe3ee4276397b18812c3b912c
SSDEEP

1536:TjIawSFARo6VwqivM724fMQzt1Es21ZhRrKiMbIQK067xGa0o:3Df6VwqWnBC1/2bKNOFz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
152f5cf3851583b01c28ebca930c3193_JaffaCakes118

Files

152f5cf3851583b01c28ebca930c3193_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: - Virtual size: 408KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mx8.q493
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

mmkadhdm
Size: - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ltwntt4h
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hhvcncv3
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tgri747n
Size: 280KB - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3leddr43
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f433e7fcc51e68080022754836705744

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: - Virtual size: 408KB

mx8.q493 Size: - Virtual size: 80KB

.data Size: - Virtual size: 44KB

.rsrc Size: 512B - Virtual size: 4KB

mmkadhdm Size: - Virtual size: 44KB

ltwntt4h Size: - Virtual size: 4KB

hhvcncv3 Size: - Virtual size: 28KB

tgri747n Size: 280KB - Virtual size: 284KB

3leddr43 Size: 512B - Virtual size: 4KB

.text
Size: - Virtual size: 408KB

mx8.q493
Size: - Virtual size: 80KB

.data
Size: - Virtual size: 44KB

.rsrc
Size: 512B - Virtual size: 4KB

mmkadhdm
Size: - Virtual size: 44KB

ltwntt4h
Size: - Virtual size: 4KB

hhvcncv3
Size: - Virtual size: 28KB

tgri747n
Size: 280KB - Virtual size: 284KB

3leddr43
Size: 512B - Virtual size: 4KB