719f1685c4e92b8c743b4093c0e62427_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

719f1685c4e92b8c743b4093c0e62427_JaffaCakes118
Size

411KB
MD5

719f1685c4e92b8c743b4093c0e62427
SHA1

beebe69da1eea482b3858d5aaeab61c18e7f35a0
SHA256

2b7d06f48b87986b45064e8bae34e20e93174f4aa2cd4cffddcdf58d49436b42
SHA512

7870eac80727a215d57ccb9691bd8adbe9f36618d2a74150988f3b641741047b979f925fb873d887b317a06c011f44dead634414ed724f47ef718b985db403d2
SSDEEP

6144:I0E1Wt1qGYb9hBXQBAMG7j8hac2zGGmbIt05TNEEQktFCUtOCwC5iqz4xrkElI4n:w1G1q99QeMGpcOJmbIt0dZn0ivGNK4n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
719f1685c4e92b8c743b4093c0e62427_JaffaCakes118

Files

719f1685c4e92b8c743b4093c0e62427_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ad94e7a1ae3be2665a4921f682ec4882

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
SetThreadPriority
LoadLibraryExA
FileTimeToSystemTime
GetTempPathA
GetFileAttributesW
GetCurrentThreadId
CreateEventW
GetModuleFileNameA
GetWindowsDirectoryA
GetStdHandle
CreateMutexA
GetExitCodeThread
ResumeThread
FormatMessageW
GetCommandLineA
GlobalLock
MultiByteToWideChar
ExitProcess
GetTickCount
GetDriveTypeA
FindNextFileW
GetOEMCP
GetLastError
CreateProcessA
FindResourceW
FindResourceA
GetFileType
Sleep
VirtualAlloc
OpenMutexA
QueryPerformanceCounter
GetCurrentDirectoryW
GetACP
GetStringTypeW
GetCurrentProcessId
HeapDestroy
ClearCommError
TlsSetValue
GetExitCodeProcess
GetStringTypeA
lstrlenW
GetCurrentProcess
GetCommandLineW
GetVersion
lstrcpynA
IsDebuggerPresent
MulDiv
CloseHandle
SetLastError

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BSS
Size: - Virtual size: 19.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbss
Size: - Virtual size: 19.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 369KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 309KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ad94e7a1ae3be2665a4921f682ec4882

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 2KB - Virtual size: 1KB

BSS Size: - Virtual size: 19.4MB

.textbss Size: - Virtual size: 19.4MB

DATA Size: - Virtual size: 3KB

.tls Size: - Virtual size: 1KB

.tls Size: - Virtual size: 369KB

.bss Size: 309KB - Virtual size: 313KB

.rsrc Size: 98KB - Virtual size: 98KB

.text
Size: 2KB - Virtual size: 1KB

BSS
Size: - Virtual size: 19.4MB

.textbss
Size: - Virtual size: 19.4MB

DATA
Size: - Virtual size: 3KB

.tls
Size: - Virtual size: 1KB

.tls
Size: - Virtual size: 369KB

.bss
Size: 309KB - Virtual size: 313KB

.rsrc
Size: 98KB - Virtual size: 98KB