44a9d4a417723a10e9fbdf0fbece171b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

44a9d4a417723a10e9fbdf0fbece171b_JaffaCakes118
Size

194KB
MD5

44a9d4a417723a10e9fbdf0fbece171b
SHA1

7fcb1decd44fed1b2332baabfb62f61a8f26788a
SHA256

b73ae608fdc8cea7bf54040f4023869fb917bac5948b783140083bd35bd4e9b8
SHA512

60d76edff1acba22a8665e25948742505f6b4b0d6a7f1d0df1bf0a577da5932fa9046ad33ea81996806c95646216efd7c292298375ce05c9eb0bedefa9edfc44
SSDEEP

1536:q+yWUhyg4pOHl7ZT6OB9y4n6VkrlmLsu0Wx/:qDhyg4pOmOBo4Mkrlo/0W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44a9d4a417723a10e9fbdf0fbece171b_JaffaCakes118

Files

44a9d4a417723a10e9fbdf0fbece171b_JaffaCakes118
.exe windows:1 windows x86 arch:x86

51efba9cb9a2c7cac69ab4e3cd2a88a9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
lstrcmpiW
GetCurrentThreadId
GetSystemTimeAsFileTime
SetFilePointer
HeapFree
GetProcessHeap
FormatMessageW
VirtualAlloc
LocalAlloc

Sections

.test
Size: 183KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.test
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.test
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.test
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

51efba9cb9a2c7cac69ab4e3cd2a88a9

Headers

File Characteristics

Imports

kernel32

Sections

.test Size: 183KB - Virtual size: 200KB

.test Size: 1024B - Virtual size: 4KB

.test Size: 512B - Virtual size: 4KB

.test Size: 1KB - Virtual size: 4KB

.test Size: 512B - Virtual size: 4KB

.test Size: 512B - Virtual size: 4KB

.test Size: 512B - Virtual size: 4KB

.test Size: 2KB - Virtual size: 1KB

.test Size: 512B - Virtual size: 12B

.test Size: 512B - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 4KB

.test Size: 1024B - Virtual size: 4KB

.test Size: 512B - Virtual size: 4KB

.test Size: 512B - Virtual size: 4KB

.test
Size: 183KB - Virtual size: 200KB

.test
Size: 1024B - Virtual size: 4KB

.test
Size: 512B - Virtual size: 4KB

.test
Size: 1KB - Virtual size: 4KB

.test
Size: 512B - Virtual size: 4KB

.test
Size: 512B - Virtual size: 4KB

.test
Size: 512B - Virtual size: 4KB

.test
Size: 2KB - Virtual size: 1KB

.test
Size: 512B - Virtual size: 12B

.test
Size: 512B - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 4KB

.test
Size: 1024B - Virtual size: 4KB

.test
Size: 512B - Virtual size: 4KB

.test
Size: 512B - Virtual size: 4KB