709534981593a4d50bfdace08419922f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

709534981593a4d50bfdace08419922f_JaffaCakes118
Size

12KB
MD5

709534981593a4d50bfdace08419922f
SHA1

29ac5cbdde17d3446f1ae08e04c250298b57f991
SHA256

ee4f5f777940ecedf473ce78b465aa0ad53dfa8f4f9224f57389b67129b2e62e
SHA512

6764291b016078d5dcf5c4dab8f01c67846c19430acafdbe81dba5e3a3aed095cfbc37b5f1a0681f3e80081c8485cdf1e99b06a56e6525a909b571ecebab72ef
SSDEEP

96:0Py7UnxrctTTIKNrYpoQocHuTLwp3P/41oEkIBU7I7cURCFh9Fn8pcH1KS:0a4nNGrYpo4HuTLkP/0lBkqCFl1V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
709534981593a4d50bfdace08419922f_JaffaCakes118

Files

709534981593a4d50bfdace08419922f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3b2c14f44a55dcd84719fd0a04f16238

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetModuleHandleA
GetProcAddress
GetProcessHeap
HeapAlloc
HeapFree
LoadLibraryA

cc32120

@$bdele$qpv
@_CatchCleanup$qv
@_InitTermAndUnexPtrs$qv
@_ThrowExceptionLDTC$qpvt1t1t1uiuiuipuct1
@std@%char_traits$c%@eof$qv
@std@%char_traits$c%@eq_int_type$qrxit1
@std@%char_traits$c%@length$qpxc
@std@%char_traits$c%@to_int_type$qrxc
@std@%ctype$c%@_Getcat$qppx16std@locale@facetpx10std@locale
@std@%ctype$c%@id
@std@%ctype$c%@widen$xqc
@std@cout
@std@exception@$bctr$qv
@std@exception@$bdtr$qv
@std@exception@what$xqv
@std@ios_base@clear$q22std@%_Iosb$i%@_Iostateo
@std@ios_base@fail$xqv
@std@ios_base@flags$xqv
@std@ios_base@getloc$xqv
@std@ios_base@good$xqv
@std@ios_base@rdstate$xqv
@std@ios_base@width$qi
@std@ios_base@width$xqv
@std@locale@$bdtr$qv
@std@locale@_Getfacet$xqui
@std@locale@facet@_Incref$qv
@std@locale@facet@_Register$qv
@std@locale@id@$oui$qv
___CRTL_MEM_UseBorMM
___CRTL_TLS_Alloc
___CRTL_TLS_ExitThread
___CRTL_TLS_Free
___CRTL_TLS_GetValue
___CRTL_TLS_InitThread
___CRTL_TLS_SetValue
____ExceptionHandler
__argc
__argv
__argv_default_expand
__exitargv
__handle_exitargv
__handle_setargv
__handle_wexitargv
__handle_wsetargv
__matherr
__matherrl
__setargv
__startup
__wargv_default_expand
_memcpy

Exports

Exports

__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3b2c14f44a55dcd84719fd0a04f16238

Headers

File Characteristics

Imports

kernel32

cc32120

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 8KB

.data Size: 1KB - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 8KB

.data
Size: 1KB - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB