28ebf1fafa4bda32bd5f7fd344c39fc7_JaffaCakes118

General

Target

28ebf1fafa4bda32bd5f7fd344c39fc7_JaffaCakes118
Size

206KB
MD5

28ebf1fafa4bda32bd5f7fd344c39fc7
SHA1

f6f671f94394e578f1680cacbf10f75a95cfe221
SHA256

9fa843d9dc98ef7711e8d0fe1e107d93bc6b30e558941b67535c51804363e23f
SHA512

8ec8da1e29afb2c8d9cce16833c3392ef8bacf095c8ff19cfa2271fd4a14a7b0cde00293fbd3801e2e42bbea82b597f0e7f9450379ef363b0adead74acfd0ac2
SSDEEP

3072:KrXXiy+PlhNUfE2wRuwBe9YiB6uM6XOJjJVao:KG7kE2uuwBAB3XOJfa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28ebf1fafa4bda32bd5f7fd344c39fc7_JaffaCakes118

Files

28ebf1fafa4bda32bd5f7fd344c39fc7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

07c1544f39fd2c0d8ac5483d471e2932

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess
ExitProcess

Sections

.CODE
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.init
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reljn
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 131KB - Virtual size: 4.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.etls
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

07c1544f39fd2c0d8ac5483d471e2932

Headers

File Characteristics

Imports

kernel32

Sections

.CODE Size: 35KB - Virtual size: 34KB

DATA Size: 5KB - Virtual size: 5KB

.init Size: 3KB - Virtual size: 2KB

.reljn Size: 13KB - Virtual size: 13KB

.data Size: 131KB - Virtual size: 4.3MB

.idata Size: 3KB - Virtual size: 2KB

.etls Size: 512B - Virtual size: 248B

.rdata Size: 3KB - Virtual size: 2KB

.kdata Size: 7KB - Virtual size: 7KB

.CODE
Size: 35KB - Virtual size: 34KB

DATA
Size: 5KB - Virtual size: 5KB

.init
Size: 3KB - Virtual size: 2KB

.reljn
Size: 13KB - Virtual size: 13KB

.data
Size: 131KB - Virtual size: 4.3MB

.idata
Size: 3KB - Virtual size: 2KB

.etls
Size: 512B - Virtual size: 248B

.rdata
Size: 3KB - Virtual size: 2KB

.kdata
Size: 7KB - Virtual size: 7KB