64a2d3131421734988a49cec004238ad_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

64a2d3131421734988a49cec004238ad_JaffaCakes118
Size

215KB
MD5

64a2d3131421734988a49cec004238ad
SHA1

03c88af027936e5abe6e860b407ad2cf40a40897
SHA256

d71734e3e3e0000b761b396a2ff263ee1c8f2c6be3e4bac1d14a067f8211bc7d
SHA512

ffc4cff2eb729e79824520c3661dc6bd414134b2effbf76fd1e21a645badebfc95277cdff3ebccec2e5189ad50f9691fb7305853a1ee253bda540e27f05fc1d8
SSDEEP

3072:7w0t7TLH2EGrvEFudYdKLedyiXLLnZ+vdthi64KJHmNI:7w0t7TLWEulAKLePXnsdtht+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
64a2d3131421734988a49cec004238ad_JaffaCakes118

Files

64a2d3131421734988a49cec004238ad_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cd1f33d9ef1efe32d6986631130c3518

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetVersionExA
lstrlenA
GetLastError
VirtualAlloc
VirtualAllocEx
LoadLibraryA
ExitProcess
GetProcAddress
ExitThread
lstrlenW
GetOEMCP
GetModuleHandleA
IsBadHugeReadPtr
IsBadReadPtr
LoadLibraryExA
GetACP

advapi32

RegCreateKeyA
RegLoadKeyA

user32

SetScrollPos
SetRect
SetScrollInfo

gdi32

GetObjectA
SetPixel
GetClipBox
GetDCOrgEx
SetBkMode
GetDIBits

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RSRC9
Size: 512B - Virtual size: 87B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RSRC4
Size: 512B - Virtual size: 378B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RSRC0
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RSRC6
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RSRC3
Size: 1024B - Virtual size: 657B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RSRC7
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd1f33d9ef1efe32d6986631130c3518

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

Sections

.text Size: 62KB - Virtual size: 61KB

.data Size: 143KB - Virtual size: 142KB

RSRC9 Size: 512B - Virtual size: 87B

RSRC4 Size: 512B - Virtual size: 378B

RSRC0 Size: 2KB - Virtual size: 1KB

RSRC6 Size: 2KB - Virtual size: 2KB

RSRC3 Size: 1024B - Virtual size: 657B

RSRC7 Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 936B

.text
Size: 62KB - Virtual size: 61KB

.data
Size: 143KB - Virtual size: 142KB

RSRC9
Size: 512B - Virtual size: 87B

RSRC4
Size: 512B - Virtual size: 378B

RSRC0
Size: 2KB - Virtual size: 1KB

RSRC6
Size: 2KB - Virtual size: 2KB

RSRC3
Size: 1024B - Virtual size: 657B

RSRC7
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 936B