40b244a3fb4c3acb83f21b207457d743_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

40b244a3fb4c3acb83f21b207457d743_JaffaCakes118
Size

114KB
MD5

40b244a3fb4c3acb83f21b207457d743
SHA1

fb74271262600f0a9eec61befe66a61d60b7b77c
SHA256

a9ec9e5776475ead3f5acc3af590b6a799d3081f46e13ce065ceab2803b2ddf0
SHA512

833e2dacde820c40675bb00cb8e5b06f14490e5d3bb45f4ffbe7ee29e7ebffb69f9a851dcbc96321aa7a2dde466bd6e794cdd1850ce4bd2b0ef269a1b7f7e417
SSDEEP

768:+bXWEe/GUZcdK+OiNGWfNxOZ6QvehgaVmNCsYAladf:+aEeOUZcNpfNxQ6QvNtNCila

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40b244a3fb4c3acb83f21b207457d743_JaffaCakes118

Files

40b244a3fb4c3acb83f21b207457d743_JaffaCakes118
.exe windows:1 windows x86 arch:x86

c7a343926a40a8490d3dfb01d18d005c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
LeaveCriticalSection
GetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapAlloc
GetStartupInfoW
GetCurrentThreadId
GetCurrentProcess
InterlockedDecrement
GetTickCount
lstrcmpiW
SetUnhandledExceptionFilter
GetLastError
LocalAlloc
LoadLibraryW
GetCurrentProcess
GetCurrentThreadId
GetCommandLineA
FormatMessageW
LoadLibraryA
SetFilePointer
WaitForSingleObject
GetCurrentProcess
LocalFree

Sections

.dhql
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.pikj
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yvvp
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedo
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uqdx
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ghsu
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fbwf
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dusu
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ipvr
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c7a343926a40a8490d3dfb01d18d005c

Headers

File Characteristics

Imports

kernel32

Sections

.dhql Size: 102KB - Virtual size: 120KB

.pikj Size: 1024B - Virtual size: 4KB

.yvvp Size: 512B - Virtual size: 4KB

.sedo Size: 512B - Virtual size: 4KB

.uqdx Size: 1024B - Virtual size: 4KB

.ghsu Size: 512B - Virtual size: 4KB

.fbwf Size: 3KB - Virtual size: 2KB

.rsrc Size: 512B - Virtual size: 12B

.dusu Size: 1024B - Virtual size: 4KB

.ipvr Size: 1024B - Virtual size: 4KB

.dhql
Size: 102KB - Virtual size: 120KB

.pikj
Size: 1024B - Virtual size: 4KB

.yvvp
Size: 512B - Virtual size: 4KB

.sedo
Size: 512B - Virtual size: 4KB

.uqdx
Size: 1024B - Virtual size: 4KB

.ghsu
Size: 512B - Virtual size: 4KB

.fbwf
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 512B - Virtual size: 12B

.dusu
Size: 1024B - Virtual size: 4KB

.ipvr
Size: 1024B - Virtual size: 4KB