45acc89de9dbed16e3347f39418f17bb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

45acc89de9dbed16e3347f39418f17bb_JaffaCakes118
Size

67KB
MD5

45acc89de9dbed16e3347f39418f17bb
SHA1

1355aa003e8ce702167c7fb84fe20e9f21da2b4e
SHA256

4419b73c58f8aff4b3ca491d63aad43aeb80aad086cc36280422e072dc8e577f
SHA512

44ce1b4cb8bb9d9a3bda42d034b1a15cf24ce35625fa4229ef5c8ef59fb32270d95fe4ac803be8b772dae4ee036308ae16dc0ea01e8565377da226d2e51152b9
SSDEEP

384:yPiLtrFxJlzUEXYxsZClkwSwCRmiYPoboW/iizNlSC0MXxibXSRAPuWk5Hw0Vd5j:/1pClzghD5k5SUWwM/ErTxZPC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45acc89de9dbed16e3347f39418f17bb_JaffaCakes118

Files

45acc89de9dbed16e3347f39418f17bb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fe0f7e9a2055d810c94d661919f3c105

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ord521
ord908
ord878
ord517
ord875
ord435
ord432
ord351
ord784
ord395
ord254
ord431
ord336
ord519
ord895
ord613
ord239
ord243
ord709
ord408
ord527
ord515
ord525
ord316
ord839
ord475
ord266
ord429
ord374
ord564
ord565
ord597
ord224
ord583
ord240
ord856
ord247
ord578
ord559
ord933
ord241
ord372
ord334
ord183
ord588
ord502
ord584
ord939
ord948
ord337
ord130
ord509
ord942
ord404
ord913

user32

ord271
ord490
ord97
ord347
ord452
ord152
ord14
ord201
ord584
ord635
ord435
ord159
ord301
ord58
ord659
ord446
ord444
ord276
ord199
ord512
ord373
ord644
ord420
ord376
ord275
ord57
ord647
ord197
ord377
ord595
ord274
ord256
ord269
ord227
ord555
ord729
ord596
ord457
ord539
ord572

gdi32

ord81
ord72
ord144
ord495
ord527

shell32

ord310
ord313
ord273

ole32

ord277
ord254
ord290
ord292
ord291

comctl32

ord17
ord22

facehelp

ord21
ord14
ord16
ord22
ord20
ord15

httpfile

ord8
ord11
ord6
ord7
ord3
ord9
ord2
ord1
ord10

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 979B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fe0f7e9a2055d810c94d661919f3c105

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

comctl32

facehelp

httpfile

Sections

.text Size: 30KB - Virtual size: 30KB

.rdata Size: 1024B - Virtual size: 979B

.data Size: 22KB - Virtual size: 24KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 3KB - Virtual size: 4KB

.text
Size: 30KB - Virtual size: 30KB

.rdata
Size: 1024B - Virtual size: 979B

.data
Size: 22KB - Virtual size: 24KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 3KB - Virtual size: 4KB