6559f5a85c0e269ab22e9b1ee38cb820_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6559f5a85c0e269ab22e9b1ee38cb820_JaffaCakes118
Size

1.5MB
MD5

6559f5a85c0e269ab22e9b1ee38cb820
SHA1

1cfb464e525bfce263e8d9e2e73f875ffa0d4d26
SHA256

6b8e80f276f1dc880f20cb7e11b3512dd5ab6bfcfd7019314e47145d1184a1fd
SHA512

51538b3baae120399599c93290a741379274b7b89f1435eb8a896112a2a8daab71b022be9e0e2e2aed3a39c42b0158a2aa43e9e0b481066ebdeb39c041ee1087
SSDEEP

24576:3bShcfPRJHaJAGKsdaxgoQglkLe6HVubSJDpIAgGt6dIyX5qw9EkSTkBs:3m06isog8x6PTg+6iIVxF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6559f5a85c0e269ab22e9b1ee38cb820_JaffaCakes118

Files

6559f5a85c0e269ab22e9b1ee38cb820_JaffaCakes118
.exe windows:4 windows x86 arch:x86

218659f0e6ede0d603da1feaea79d691

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
VirtualAlloc
VirtualFree
VirtualProtect
GetVersionExA
GetModuleHandleA
GetCommandLineA
GetStartupInfoA

dvapi32

RegCloseKey

ernel32

AllocConsole

svcrt

__getmainargs

ser32

indWindowA

sock32

SACleanup

Sections

.text
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 760KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

218659f0e6ede0d603da1feaea79d691

Headers

File Characteristics

Imports

kernel32

dvapi32

ernel32

svcrt

ser32

sock32

Sections

.text Size: 1024B - Virtual size: 12KB

.bss Size: - Virtual size: 4KB

.bss Size: - Virtual size: 4KB

.bss Size: - Virtual size: 4KB

.bss Size: - Virtual size: 4KB

.bss Size: - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

.bss Size: - Virtual size: 4KB

.bss Size: - Virtual size: 36KB

.bss Size: - Virtual size: 8KB

.bss Size: - Virtual size: 12KB

.bss Size: - Virtual size: 4KB

.bss Size: - Virtual size: 4KB

.bss Size: - Virtual size: 8KB

.bss Size: - Virtual size: 4KB

.bss Size: - Virtual size: 760KB

.rdata Size: 1.5MB - Virtual size: 1.5MB

.text
Size: 1024B - Virtual size: 12KB

.bss
Size: - Virtual size: 4KB

.bss
Size: - Virtual size: 4KB

.bss
Size: - Virtual size: 4KB

.bss
Size: - Virtual size: 4KB

.bss
Size: - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

.bss
Size: - Virtual size: 4KB

.bss
Size: - Virtual size: 36KB

.bss
Size: - Virtual size: 8KB

.bss
Size: - Virtual size: 12KB

.bss
Size: - Virtual size: 4KB

.bss
Size: - Virtual size: 4KB

.bss
Size: - Virtual size: 8KB

.bss
Size: - Virtual size: 4KB

.bss
Size: - Virtual size: 760KB

.rdata
Size: 1.5MB - Virtual size: 1.5MB