291904710091db80f7ceaf231eae87e5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

291904710091db80f7ceaf231eae87e5_JaffaCakes118
Size

476KB
MD5

291904710091db80f7ceaf231eae87e5
SHA1

023330a39d7b9da6968f11fdd983c08b4d24fc80
SHA256

b4a14422031301b15861b2f220e1d4fe02784b412ec74a1a519a91cf8d15cfb6
SHA512

7b78ccca2fde4fad2e9bc076f163df2c2226fad21f38277f18c4c23477a788118a65783b6c763d039f2ffcb89a3e526c0e3c55f125972bae3c9aca6898074b68
SSDEEP

6144:53/KM/ENbWN4Oi9cmHLf5M9dvaYdZeOTB6ny9SEpujHjZ0JB129b2Tr5sevN2m0E:53SBaqBWmHF49veO96nLeJm1KdFYmt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
291904710091db80f7ceaf231eae87e5_JaffaCakes118

Files

291904710091db80f7ceaf231eae87e5_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3jfs0tdo
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 712KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5g4demj7
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ti9kw9e
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hjjjbvw2
Size: - Virtual size: 288KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pe0i07t2
Size: 403KB - Virtual size: 404KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

spqd0td1
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f433e7fcc51e68080022754836705744

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: - Virtual size: 64KB

3jfs0tdo Size: 16KB - Virtual size: 16KB

.data Size: - Virtual size: 12KB

.rsrc Size: 52KB - Virtual size: 712KB

5g4demj7 Size: - Virtual size: 8KB

.ti9kw9e Size: - Virtual size: 4KB

hjjjbvw2 Size: - Virtual size: 288KB

pe0i07t2 Size: 403KB - Virtual size: 404KB

spqd0td1 Size: 4KB - Virtual size: 4KB

.text
Size: - Virtual size: 64KB

3jfs0tdo
Size: 16KB - Virtual size: 16KB

.data
Size: - Virtual size: 12KB

.rsrc
Size: 52KB - Virtual size: 712KB

5g4demj7
Size: - Virtual size: 8KB

.ti9kw9e
Size: - Virtual size: 4KB

hjjjbvw2
Size: - Virtual size: 288KB

pe0i07t2
Size: 403KB - Virtual size: 404KB

spqd0td1
Size: 4KB - Virtual size: 4KB