366271b84b92201aaefa8e04fbc2100c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

366271b84b92201aaefa8e04fbc2100c_JaffaCakes118
Size

179KB
MD5

366271b84b92201aaefa8e04fbc2100c
SHA1

ce8229b2e93431e28f5a64026592196dad78263d
SHA256

4af9f76d9f725d1fc6b6f2ca65f7755237a9ee036a472d381358b61024db6b53
SHA512

859b5f2a699889cd323bc70f278ec9cc4ad6c9ddeff7e5af12e452de06d8fe405f718a832f2a3a309b27a6c284b04114a3dfa47247908d283917edb88ffde6fc
SSDEEP

3072:PCrxesBom3yWx6VC7IMQTSXejNuDzHdRiN2FCwHJuR0Isb6HhuwsCR1P:6rosB33yWwE7IrnJunLCsJuKIsahuwss

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
366271b84b92201aaefa8e04fbc2100c_JaffaCakes118

Files

366271b84b92201aaefa8e04fbc2100c_JaffaCakes118
.exe windows:1 windows x86 arch:x86

05c3e6826b33585e4db96d7f5d1ea7d7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
GetStartupInfoA
HeapAlloc
GetTickCount
GetTickCount
InitializeCriticalSection
TerminateProcess
SetEvent
lstrlenW
GetACP
CloseHandle
CloseHandle
HeapReAlloc
GetCurrentProcess
FormatMessageW
GetCurrentProcess
GetACP
GetCommandLineA
LocalAlloc
TerminateProcess
MultiByteToWideChar
TerminateProcess
QueryPerformanceCounter
GetCommandLineW
GetStartupInfoA
InterlockedDecrement
InterlockedIncrement
GetStartupInfoW
Sleep
SetLastError
GetCommandLineW
WriteFile
LeaveCriticalSection
GetLastError
WriteFile
GetCommandLineA
lstrcpyW
SetEvent
InterlockedIncrement
SetLastError
WideCharToMultiByte
FormatMessageW
GetStartupInfoW
GetACP
GetVersionExA

Sections

.ibxv
Size: 166KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.empt
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mcea
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xsxt
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdkg
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qvdo
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ilxa
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.gdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

05c3e6826b33585e4db96d7f5d1ea7d7

Headers

File Characteristics

Imports

kernel32

Sections

.ibxv Size: 166KB - Virtual size: 192KB

.empt Size: 512B - Virtual size: 4KB

.mcea Size: 512B - Virtual size: 4KB

.xsxt Size: 512B - Virtual size: 4KB

.cdkg Size: 1KB - Virtual size: 4KB

.qvdo Size: 512B - Virtual size: 4KB

.ilxa Size: 7KB - Virtual size: 6KB

.gdata Size: 512B - Virtual size: 32B

.rsrc Size: 1024B - Virtual size: 4KB

.ibxv
Size: 166KB - Virtual size: 192KB

.empt
Size: 512B - Virtual size: 4KB

.mcea
Size: 512B - Virtual size: 4KB

.xsxt
Size: 512B - Virtual size: 4KB

.cdkg
Size: 1KB - Virtual size: 4KB

.qvdo
Size: 512B - Virtual size: 4KB

.ilxa
Size: 7KB - Virtual size: 6KB

.gdata
Size: 512B - Virtual size: 32B

.rsrc
Size: 1024B - Virtual size: 4KB