5c929c19c1d14e2254b47184a9468c36_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5c929c19c1d14e2254b47184a9468c36_JaffaCakes118
Size

466KB
MD5

5c929c19c1d14e2254b47184a9468c36
SHA1

4ac63dc3a02cc4c4261e530fde6eae7642ef1793
SHA256

a91703d3c633462bf6fdf865b9478a21f22fafc3dd39a6d9aefd19d64aeff98c
SHA512

0118dff40414daf4f345851cb1eb66ffea2cd33f161291319231b1b54a80105a6b9b096b9ba6088ab340aa5e146de0db4928b785e59f53a709482fc3ee6b6722
SSDEEP

3072:kzKXMaNDyWjO9AMNMYHvT3A1jYxB1mgkNwmcsuWuHd:kjUFNMNMsjSamgkbMWWd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c929c19c1d14e2254b47184a9468c36_JaffaCakes118

Files

5c929c19c1d14e2254b47184a9468c36_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b56314658df8fae4c2450b2558172081

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
FindFirstFileA
GlobalUnlock
GlobalLock
GlobalFree
GlobalAlloc
GetTimeFormatA
GetStartupInfoA
GetProfileStringA
GetModuleHandleA
GetLocaleInfoA
GetLocalTime
GetLastError
GetDateFormatA
GetCommandLineA
ExitProcess
DeleteFileA
CreateFileA
OutputDebugStringA
ReadProcessMemory
GetCurrentProcess

user32

DispatchMessageA
TranslateMessage
GetMessageA
RegisterClassExA
LoadCursorA
LoadIconA
UpdateWindow
ShowWindow
CreateWindowExA
PostQuitMessage
EndPaint
DrawTextA
GetClientRect
BeginPaint
DialogBoxParamA
DestroyWindow
DefWindowProcA
LoadStringA
EndDialog

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdata
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.5njid
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b56314658df8fae4c2450b2558172081

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 8KB - Virtual size: 8KB

.sdata Size: 112KB - Virtual size: 112KB

.reloc Size: 4KB - Virtual size: 4KB

.5njid Size: 52KB - Virtual size: 52KB

.data Size: 176KB - Virtual size: 176KB

.idata Size: 60KB - Virtual size: 60KB

.rdata Size: 40KB - Virtual size: 40KB

.rsrc Size: 8KB - Virtual size: 8KB

.aspack Size: 4KB - Virtual size: 4KB

.adata Size: - Virtual size: 36KB

.text
Size: 8KB - Virtual size: 8KB

.sdata
Size: 112KB - Virtual size: 112KB

.reloc
Size: 4KB - Virtual size: 4KB

.5njid
Size: 52KB - Virtual size: 52KB

.data
Size: 176KB - Virtual size: 176KB

.idata
Size: 60KB - Virtual size: 60KB

.rdata
Size: 40KB - Virtual size: 40KB

.rsrc
Size: 8KB - Virtual size: 8KB

.aspack
Size: 4KB - Virtual size: 4KB

.adata
Size: - Virtual size: 36KB