699d9f1bd8c2b80760f343595a347afc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

699d9f1bd8c2b80760f343595a347afc_JaffaCakes118
Size

1.8MB
MD5

699d9f1bd8c2b80760f343595a347afc
SHA1

7632905867a35b54424e123b6acd5de7049bb448
SHA256

97ed0ff3440846a9e29a31bf0478c19e566164aba2bc10fcf1b5b651020c01db
SHA512

abab9aa4d3bd4090db2df4b9abf96ed4a709bdb699e92485214f024b99cbb4edf3f3d91bb466d37c0c1e54a11e22e3a0133b5bd9c148f9889f65cc29cd380852
SSDEEP

24576:pBek2LhWQ+uZTpH/LNASY7I0Xt7m/MVVyLh6mav0mlr1CGZWTWGxRdyCC:pUk2lrPZTpKSY7IIaEPycFGDds

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
699d9f1bd8c2b80760f343595a347afc_JaffaCakes118

Files

699d9f1bd8c2b80760f343595a347afc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0975a94f7f228fe0f87f1357e7ae113f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetComputerNameA
GetFileSize
GlobalFree
DeleteAtom
OpenFile
Sleep
GetCommandLineA
CopyFileExA
CopyFileW
ExitThread
CopyFileExW
FindFirstFileA
DeleteFileA
Sleep
DeleteFileA
CopyFileExA
OpenFile
CopyFileExW
ReadConsoleW
CreateProcessA
DeleteAtom
GetConsoleMode
GetLastError
ReadFile
CopyFileA
GetStdHandle
ExitThread
GetComputerNameA
GetFileSize
GetFileTime
CopyFileW
CopyFileExA
GetLastError
GetComputerNameA
OpenFile
DeleteAtom
FindFirstFileA
GetConsoleMode
DeleteFileW
FindAtomA
Sleep
GetStdHandle
CreateThread
CopyFileExA
OpenFileMappingA
CopyFileExW
GlobalFree
CreateDirectoryA
ReadFile
DeleteFileW
ReadConsoleW
GetCommandLineA
GetComputerNameA
CopyFileW
OpenFile
CreateProcessA
GetLastError
GetCPInfo
FindAtomA

Sections

.bbs
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 24KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 4KB - Virtual size: 82B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0975a94f7f228fe0f87f1357e7ae113f

Headers

File Characteristics

Imports

kernel32

Sections

.bbs Size: 1.7MB - Virtual size: 1.7MB

.itext Size: 8KB - Virtual size: 6KB

.reloc Size: 12KB - Virtual size: 8KB

.edata Size: 24KB - Virtual size: 2.6MB

.bss Size: 4KB - Virtual size: 82B

.rdata Size: 4KB - Virtual size: 1KB

.idata Size: 12KB - Virtual size: 8KB

.rsrc Size: 12KB - Virtual size: 10KB

.bbs
Size: 1.7MB - Virtual size: 1.7MB

.itext
Size: 8KB - Virtual size: 6KB

.reloc
Size: 12KB - Virtual size: 8KB

.edata
Size: 24KB - Virtual size: 2.6MB

.bss
Size: 4KB - Virtual size: 82B

.rdata
Size: 4KB - Virtual size: 1KB

.idata
Size: 12KB - Virtual size: 8KB

.rsrc
Size: 12KB - Virtual size: 10KB