39d889f650095f39d6edc3c40636c412_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

39d889f650095f39d6edc3c40636c412_JaffaCakes118
Size

2.7MB
MD5

39d889f650095f39d6edc3c40636c412
SHA1

35cdd14be4ccf0260f51873587f22b2ea0fa6104
SHA256

b8d74517a29af24f1f240e149dc4a9c71188703018852db4d808059b7ffbcd2a
SHA512

c7dae7aab424334024cbc91d214af4b32b7114a09f5e598a49b5e7adf26324f4a3a2ad4197c08aa04e6f7a0622b70123c86105e29dc56fc610fad5fae45013ab
SSDEEP

49152:vMgMevo6W0/3xG+1JLMMBd3HPch+MpCwqgL6F7XGRhZjM2mcXHrE8Ml/D:MePW68wjvcYMpCBgLU72Rh5M2mcXrlMB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39d889f650095f39d6edc3c40636c412_JaffaCakes118

Files

39d889f650095f39d6edc3c40636c412_JaffaCakes118
.exe windows:4 windows x86 arch:x86

69ed015a7889d5c7846e5378e1350813

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcatA
InitializeCriticalSection
GetProcAddress
LocalFree
RaiseException
LocalAlloc
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
GetPrivateProfileSectionA
RtlUnwind
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

Sections

0
Size: 2.1MB - Virtual size: 4.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 452KB - Virtual size: 448KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2
Size: 119KB - Virtual size: 620KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6
Size: 39KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

7
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

8
Size: 6KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

69ed015a7889d5c7846e5378e1350813

Headers

File Characteristics

Imports

kernel32

Sections

0 Size: 2.1MB - Virtual size: 4.4MB

1 Size: 452KB - Virtual size: 448KB

2 Size: 119KB - Virtual size: 620KB

3 Size: 8KB - Virtual size: 4KB

4 Size: 512B - Virtual size: 2KB

5 Size: 24KB - Virtual size: 22KB

6 Size: 39KB - Virtual size: 60KB

7 Size: 6KB - Virtual size: 6KB

8 Size: 6KB - Virtual size: 27KB

0
Size: 2.1MB - Virtual size: 4.4MB

1
Size: 452KB - Virtual size: 448KB

2
Size: 119KB - Virtual size: 620KB

3
Size: 8KB - Virtual size: 4KB

4
Size: 512B - Virtual size: 2KB

5
Size: 24KB - Virtual size: 22KB

6
Size: 39KB - Virtual size: 60KB

7
Size: 6KB - Virtual size: 6KB

8
Size: 6KB - Virtual size: 27KB