65b17b6cff35624dcb66ec3fc294f449_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

65b17b6cff35624dcb66ec3fc294f449_JaffaCakes118
Size

118KB
MD5

65b17b6cff35624dcb66ec3fc294f449
SHA1

0a18ec534b645c248ea0a45b50563af3f24febca
SHA256

143055e3c421d32d3b8fd2f09e7b782ab53c7b77a00a99f77627e1fb61a54107
SHA512

15f8d7246bbbc816f75c2ba8c6c6828e8d84a8cb85b53e59a424353593a0539591d731a7199ad9044b332d0b5b53a7e4d07a9bc54cc6ce9205fd5a4f4555c65b
SSDEEP

1536:l2pEjadciTnraipEmXES6saij1Yesr/JKHnLUG:YeociTOGl6sDj1YfoLUG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65b17b6cff35624dcb66ec3fc294f449_JaffaCakes118

Files

65b17b6cff35624dcb66ec3fc294f449_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3c8bf70d96f4f4b29f259a1a909ad04d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

bzip2

BZ2_bzWriteOpen
BZ2_bzWrite
BZ2_bzWriteClose64
BZ2_bzReadOpen
BZ2_bzRead
BZ2_bzReadGetUnused
BZ2_bzReadClose
BZ2_bzlibVersion

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
InterlockedCompareExchange
InterlockedExchange
LeaveCriticalSection
LoadLibraryA
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery

msvcrt

_fileno
_isatty
_setmode
__dllonexit
__getmainargs
__initenv
__lconv_init
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_errno
_fmode
_initterm
_iob
_lock
_onexit
_stat
_unlock
abort
calloc
exit
fclose
ferror
fflush
fgetc
fopen
fprintf
fputc
fread
free
fwrite
getenv
isspace
malloc
memcpy
perror
remove
rewind
signal
strcat
strcmp
strcpy
strerror
strlen
strncmp
strncpy
strstr
ungetc
vfprintf

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/19
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/35
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/47
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/61
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/73
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/86
Size: 1024B - Virtual size: 654B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/97
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/108
Size: 512B - Virtual size: 304B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c8bf70d96f4f4b29f259a1a909ad04d

Headers

File Characteristics

Imports

bzip2

kernel32

msvcrt

Sections

.text Size: 23KB - Virtual size: 22KB

.data Size: 512B - Virtual size: 68B

.rdata Size: 8KB - Virtual size: 7KB

.bss Size: - Virtual size: 5KB

.idata Size: 2KB - Virtual size: 2KB

.CRT Size: 512B - Virtual size: 52B

.tls Size: 512B - Virtual size: 32B

/4 Size: 512B - Virtual size: 512B

/19 Size: 2KB - Virtual size: 1KB

/35 Size: 31KB - Virtual size: 30KB

/47 Size: 4KB - Virtual size: 4KB

/61 Size: 4KB - Virtual size: 4KB

/73 Size: 1KB - Virtual size: 1KB

/86 Size: 1024B - Virtual size: 654B

/97 Size: 3KB - Virtual size: 2KB

/108 Size: 512B - Virtual size: 304B

.text
Size: 23KB - Virtual size: 22KB

.data
Size: 512B - Virtual size: 68B

.rdata
Size: 8KB - Virtual size: 7KB

.bss
Size: - Virtual size: 5KB

.idata
Size: 2KB - Virtual size: 2KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 32B

/4
Size: 512B - Virtual size: 512B

/19
Size: 2KB - Virtual size: 1KB

/35
Size: 31KB - Virtual size: 30KB

/47
Size: 4KB - Virtual size: 4KB

/61
Size: 4KB - Virtual size: 4KB

/73
Size: 1KB - Virtual size: 1KB

/86
Size: 1024B - Virtual size: 654B

/97
Size: 3KB - Virtual size: 2KB

/108
Size: 512B - Virtual size: 304B