1552b886dab4168a4011422cc781d587_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1552b886dab4168a4011422cc781d587_JaffaCakes118
Size

571KB
MD5

1552b886dab4168a4011422cc781d587
SHA1

4768843a3bf748a5f089311d2729bd42068bca15
SHA256

9d825ed094aa540ae772512ea9b54061dd1aaf74cee0653b3ccbd244bb4e8064
SHA512

df776460523ce33daa307202873f81cb9703b5beb5261932b5263c28db74b6fc556b5d9b8a4f0c08c21beefecbec3359403c8ad074330567ef31314168053967
SSDEEP

12288:gNX5CeEt2UxdWUkvWgf5nLvWqz4egvaag8mW5Y/miQ5qIrbuo/iIxfi5gX7q:gNpGt2SWUkvNLvA5yKmWG/Sdrbuo/TxY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1552b886dab4168a4011422cc781d587_JaffaCakes118

Files

1552b886dab4168a4011422cc781d587_JaffaCakes118
.dll windows:4 windows x86 arch:x86

35cf40629ba6e4eccc6e4fadab5eb3ec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

Module32First

Exports

Exports

CF
GetStat
HM
SetInfo
SetPID
SetPName
SetStat
SethWnd

Sections

Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 624KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ocfjlfve
Size: 452KB - Virtual size: 456KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

evqixruz
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

35cf40629ba6e4eccc6e4fadab5eb3ec

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

Size: 5KB - Virtual size: 12KB

.bss Size: - Virtual size: 5KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 1KB

.reloc Size: 91KB - Virtual size: 91KB

.rsrc Size: - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

Size: 512B - Virtual size: 624KB

ocfjlfve Size: 452KB - Virtual size: 456KB

evqixruz Size: 512B - Virtual size: 4KB

.bss
Size: - Virtual size: 5KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 1KB

.reloc
Size: 91KB - Virtual size: 91KB

.rsrc
Size: - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

ocfjlfve
Size: 452KB - Virtual size: 456KB

evqixruz
Size: 512B - Virtual size: 4KB