5b584f10e6ed0a2a044bbbe06c0a9b2f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5b584f10e6ed0a2a044bbbe06c0a9b2f_JaffaCakes118
Size

3.6MB
MD5

5b584f10e6ed0a2a044bbbe06c0a9b2f
SHA1

5a708eaefd96aac8545d71c62847fff6105f8d0f
SHA256

44cd70c7117730f96a6f8fe555f0093f55e24ba1a6e1cf579b5a43b57a5200c5
SHA512

7c9bd04e71fd30521e5dcb6665bb0b8a7f2eafcad7df06dd234bb09aa0b4c2671bf392d74c577078b933346ae632112cfea6014ed74a422b6ced27728668393a
SSDEEP

49152:XWmtSzoj1ssX9G2KYUaLtjFwFuZqedlBPYm6S90Vuv/fteoecFcqMgETTk:XS0ys7KYnLhFWuQ1W080o3FMgx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b584f10e6ed0a2a044bbbe06c0a9b2f_JaffaCakes118

Files

5b584f10e6ed0a2a044bbbe06c0a9b2f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b9501d770ca68aeb2df60c9705dd10f0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCurrentThread
OpenProcess
lstrlenW
GetProcAddress
AddVectoredExceptionHandler
GetCurrentProcess
GetModuleHandleA
EnumDateFormatsW
LocalFree
SetUnhandledExceptionFilter
VirtualLock
RemoveVectoredExceptionHandler

user32

CreateWindowExA
GetClassNameW
RegisterClassW
GetClassInfoExA
MessageBoxA

Sections

B
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

b
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

B
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

B
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

B
Size: 2KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

PLc
Size: 130KB - Virtual size: 128KB

IMAGE_SCN_MEM_READ

nYx
Size: 194KB - Virtual size: 192KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ab2
Size: 194KB - Virtual size: 192KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vyK
Size: 194KB - Virtual size: 192KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

7mw
Size: 194KB - Virtual size: 192KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

9vL
Size: 194KB - Virtual size: 192KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

O5o
Size: 194KB - Virtual size: 192KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b9501d770ca68aeb2df60c9705dd10f0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

B Size: 2KB - Virtual size: 4KB

b Size: 2KB - Virtual size: 4KB

B Size: 2KB - Virtual size: 4KB

.tls Size: 2KB - Virtual size: 4KB

B Size: 2KB - Virtual size: 4KB

.RSRC Size: 1.8MB - Virtual size: 1.8MB

B Size: 2KB - Virtual size: 1.7MB

PLc Size: 130KB - Virtual size: 128KB

nYx Size: 194KB - Virtual size: 192KB

ab2 Size: 194KB - Virtual size: 192KB

vyK Size: 194KB - Virtual size: 192KB

7mw Size: 194KB - Virtual size: 192KB

9vL Size: 194KB - Virtual size: 192KB

O5o Size: 194KB - Virtual size: 192KB

B
Size: 2KB - Virtual size: 4KB

b
Size: 2KB - Virtual size: 4KB

B
Size: 2KB - Virtual size: 4KB

.tls
Size: 2KB - Virtual size: 4KB

B
Size: 2KB - Virtual size: 4KB

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

B
Size: 2KB - Virtual size: 1.7MB

PLc
Size: 130KB - Virtual size: 128KB

nYx
Size: 194KB - Virtual size: 192KB

ab2
Size: 194KB - Virtual size: 192KB

vyK
Size: 194KB - Virtual size: 192KB

7mw
Size: 194KB - Virtual size: 192KB

9vL
Size: 194KB - Virtual size: 192KB

O5o
Size: 194KB - Virtual size: 192KB