1afd905169da631a1fe73e87ffad3079_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1afd905169da631a1fe73e87ffad3079_JaffaCakes118
Size

54KB
MD5

1afd905169da631a1fe73e87ffad3079
SHA1

f0fcb52b43163d0d7dffe29fb5228b2e57b03b37
SHA256

15d917c510f7e16992cfeb66867c788ac8d50f57c8e51b26c6459a245ef63001
SHA512

4da72d9e4731aedac05fe5b7b210c61300f55ab0bf07b8e412c980970159d0494a78044b3e605e7acd95253b9f6087c6f50c85e86be1f1f4bd4efc8c79ecf811
SSDEEP

768:zwjQFRgWy1lUkDX8Ud6eCSJeMj8udsnpjW9vhAupQhRDgWshGPX:zuagZCTMh9v2upsdgSPX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1afd905169da631a1fe73e87ffad3079_JaffaCakes118

Files

1afd905169da631a1fe73e87ffad3079_JaffaCakes118
.dll windows:4 windows x86 arch:x86

487fac70e924f1bb10fba3a9bf00ec1b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

UrlCanonicalizeA

kernel32

SetComputerNameExA
ExitProcess
GetBinaryTypeA
GetFileType
Beep
CallNamedPipeA
BackupSeek
lstrlenW
SetCurrentDirectoryA
FlushViewOfFile
GetDriveTypeW
CancelIo
GetSystemDirectoryA
GetComputerNameW
GetCurrentDirectoryW
lstrcmpW
HeapAlloc
GetProcessHeap
HeapFree
GetDriveTypeA

advapi32

GetUserNameA
GetUserNameW

winmm

mmioOpenA

Exports

Exports

fdabjktv

Sections

.code
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 854B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 554B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

487fac70e924f1bb10fba3a9bf00ec1b

Headers

File Characteristics

Imports

shlwapi

kernel32

advapi32

winmm

Exports

Exports

Sections

.code Size: 22KB - Virtual size: 22KB

.rdata Size: 1024B - Virtual size: 854B

.data Size: 25KB - Virtual size: 25KB

.reloc Size: 512B - Virtual size: 1B

.rdata Size: 512B - Virtual size: 1B

.reloc Size: 512B - Virtual size: 1B

.data Size: 512B - Virtual size: 1B

.rsrc Size: 1024B - Virtual size: 760B

.reloc Size: 1024B - Virtual size: 554B

.code
Size: 22KB - Virtual size: 22KB

.rdata
Size: 1024B - Virtual size: 854B

.data
Size: 25KB - Virtual size: 25KB

.reloc
Size: 512B - Virtual size: 1B

.rdata
Size: 512B - Virtual size: 1B

.reloc
Size: 512B - Virtual size: 1B

.data
Size: 512B - Virtual size: 1B

.rsrc
Size: 1024B - Virtual size: 760B

.reloc
Size: 1024B - Virtual size: 554B