389dba20ffe0f6af47fef73ec2ffd3ec_JaffaCakes118

General

Target

389dba20ffe0f6af47fef73ec2ffd3ec_JaffaCakes118
Size

7KB
MD5

389dba20ffe0f6af47fef73ec2ffd3ec
SHA1

c72ec785b19dae160e172477de582fb69ef74130
SHA256

d94bff345661db86481db5b456f72677e82b435c1871410f4ecfffa76aed8569
SHA512

d5e3cdadbef9876afca1335e0288e02808568f62cebfa1e05eb7adeb1dbed2383af53b2d20caf7307e66a886ec4a7f26af7d38d45b547bd20563d7645e59fd52
SSDEEP

48:0PHiXN/UifAWMiu2THKXkkQrWfmcPC0SlbNpSFbZlIR6Lwr:0PCXtAWLhTHgkkdmp+zIuw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
389dba20ffe0f6af47fef73ec2ffd3ec_JaffaCakes118

Files

389dba20ffe0f6af47fef73ec2ffd3ec_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7788ec34318cdb0eb67c56c8fef9cc31

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

cc3250

@_InitTermAndUnexPtrs$qv
___CRTL_MEM_UseBorMM
___CRTL_TLS_Alloc
___CRTL_TLS_ExitThread
___CRTL_TLS_Free
___CRTL_TLS_GetValue
___CRTL_TLS_InitThread
___CRTL_TLS_SetValue
__argc
__argv
__argv_default_expand
__exitargv
__handle_exitargv
__handle_setargv
__handle_wexitargv
__handle_wsetargv
__matherr
__matherrl
__setargv
__startup
__wargv_default_expand
_fclose
_filelength
_fopen
_fprintf
_fread
_free
_malloc
_memcpy
_printf

kernel32

GetModuleHandleA
GetProcAddress
GetProcessHeap
HeapAlloc
HeapFree

Exports

Exports

__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7788ec34318cdb0eb67c56c8fef9cc31

Headers

File Characteristics

Imports

cc3250

kernel32

Exports

Exports

Sections

.text Size: 1KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 1024B - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 1KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 1024B - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB