280ad20a3340afbcced1d90e09b123fa_JaffaCakes118

General

Target

280ad20a3340afbcced1d90e09b123fa_JaffaCakes118
Size

388KB
MD5

280ad20a3340afbcced1d90e09b123fa
SHA1

88e2b6b6b39765251dcb8a69547913ac455dd62f
SHA256

53169b336905d93c263b0e9d508ab424cce6c6e10de33c446405cda2e22e252d
SHA512

e3bbf42a7fafe1a5a7e7624e23e362ddb0affc5429b25fcb3401daf65e346f57e07b45e53c0c33f80238ec0a4e8a9a021f070c3235265b9577a7b5bb1b4c35de
SSDEEP

6144:H2birFMU3NDjNHjJp9EnCHX3F23df3oJ4/LK/Afb0jv0mUdrA8/uGz:H2biRJ3xxHNQCHc3B4GLkAfb0jMmErxz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
280ad20a3340afbcced1d90e09b123fa_JaffaCakes118

Files

280ad20a3340afbcced1d90e09b123fa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e304217fc16c011615a0ec22783cbfae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

lstrcatA
InitializeCriticalSection
GetProcAddress
LocalFree
RaiseException
LocalAlloc
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
SearchPathA
ResumeThread
WriteProcessMemory
GetPrivateProfileSectionA
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW

user32

DefWindowProcA
AdjustWindowRectEx

Sections

0
Size: 228KB - Virtual size: 812KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 44KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5
Size: 7KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e304217fc16c011615a0ec22783cbfae

Headers

File Characteristics

Imports

kernel32

user32

Sections

0 Size: 228KB - Virtual size: 812KB

1 Size: 4KB - Virtual size: 4KB

2 Size: 100KB - Virtual size: 100KB

3 Size: 44KB - Virtual size: 68KB

4 Size: 3KB - Virtual size: 3KB

5 Size: 7KB - Virtual size: 28KB

0
Size: 228KB - Virtual size: 812KB

1
Size: 4KB - Virtual size: 4KB

2
Size: 100KB - Virtual size: 100KB

3
Size: 44KB - Virtual size: 68KB

4
Size: 3KB - Virtual size: 3KB

5
Size: 7KB - Virtual size: 28KB