247247666870c8a830821d48e774f13a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

247247666870c8a830821d48e774f13a_JaffaCakes118
Size

101KB
MD5

247247666870c8a830821d48e774f13a
SHA1

fba2d4750b0393f21e3c00de842ec4747a4e77ad
SHA256

9edaf84c233ff821d3d3ff59689d7d0f275ccf483f46fff3e2f9f216201a2d25
SHA512

4bc03baf75143d93344203f4cae5cfe0ec2c12cb1173fa04eaf9ba6140818f784311a9dd26fad97b0dff02b6e0aa19fd1554e8c268fe05469a07534d7105c4e8
SSDEEP

768:lBDjwxDqSYnropN/FLY2DPrNjXWFm5C00sWBlH1bmbxz1hGVRlnx/PBJQ5:lRtSYo/F82DPr5w89ZeNmbYZnx/w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
247247666870c8a830821d48e774f13a_JaffaCakes118

Files

247247666870c8a830821d48e774f13a_JaffaCakes118
.exe windows:1 windows x86 arch:x86

890dd996c9f4a13c314e6304fb3af536

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSection
lstrcpyW
lstrcmpiW
GetVersionExA
FormatMessageW
QueryPerformanceCounter
HeapFree
SetLastError
InterlockedDecrement
lstrcpyW
CreateThread
FreeLibrary
VirtualAlloc
LoadLibraryW
WriteFile
WaitForSingleObject
InterlockedIncrement
GetCommandLineA
CreateFileW
GetTickCount
GetCommandLineA
LoadLibraryW
GetModuleHandleA
SetUnhandledExceptionFilter
SetUnhandledExceptionFilter

Sections

.ukwq
Size: 87KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.nmsc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kcmp
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pmks
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pwlb
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yugb
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bvyy
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wimb
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.btid
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

890dd996c9f4a13c314e6304fb3af536

Headers

File Characteristics

Imports

kernel32

Sections

.ukwq Size: 87KB - Virtual size: 104KB

.nmsc Size: 1024B - Virtual size: 4KB

.kcmp Size: 512B - Virtual size: 4KB

.pmks Size: 512B - Virtual size: 4KB

.pwlb Size: 1024B - Virtual size: 4KB

.yugb Size: 512B - Virtual size: 4KB

.bvyy Size: 5KB - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 24B

.wimb Size: 1024B - Virtual size: 4KB

.btid Size: 1024B - Virtual size: 4KB

.ukwq
Size: 87KB - Virtual size: 104KB

.nmsc
Size: 1024B - Virtual size: 4KB

.kcmp
Size: 512B - Virtual size: 4KB

.pmks
Size: 512B - Virtual size: 4KB

.pwlb
Size: 1024B - Virtual size: 4KB

.yugb
Size: 512B - Virtual size: 4KB

.bvyy
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 24B

.wimb
Size: 1024B - Virtual size: 4KB

.btid
Size: 1024B - Virtual size: 4KB