00298fbb3b7595a3ad451bed67d7c21e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

00298fbb3b7595a3ad451bed67d7c21e_JaffaCakes118
Size

100KB
MD5

00298fbb3b7595a3ad451bed67d7c21e
SHA1

683acf5658332af0fbd6c74208c9008bec9fa50e
SHA256

f0716d16618b49bb8316cfca44b3c354e4010634ab237a5b5c988bf1a8a3e29d
SHA512

ac60385d9400a739a55db4f7dda30a52cd91d3d97ef3d56fda55654752ec839ee8956cf421de2a943ccd391e278330a5588421427096f4542763652714bc3869
SSDEEP

768:iDNO4DD5EhjhtopXSlzWpaYEexkMixGwDHCeAWdUnK9TvfG23hL+Ji:A/ChtTtve2MiIUCefdGO2231+A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00298fbb3b7595a3ad451bed67d7c21e_JaffaCakes118

Files

00298fbb3b7595a3ad451bed67d7c21e_JaffaCakes118
.exe windows:1 windows x86 arch:x86

fb2b54d3d90c3bdb45f869ea45d10a12

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetStartupInfoA
GetCurrentThreadId
SetEvent
UnhandledExceptionFilter
HeapDestroy
VirtualFree
SetEvent
DeleteCriticalSection
GetStartupInfoA
ExitProcess
UnhandledExceptionFilter
SetFilePointer
Sleep
FormatMessageW
WaitForSingleObject
SetFilePointer
VirtualFree
GetLastError
GetSystemTimeAsFileTime
GetCurrentProcess
WaitForSingleObject
SetFilePointer
lstrlenW
LoadLibraryA

Sections

.plhm
Size: 87KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.knxb
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.foab
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tbtd
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.seey
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ceqj
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rxta
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qffy
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ahiy
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fb2b54d3d90c3bdb45f869ea45d10a12

Headers

File Characteristics

Imports

kernel32

Sections

.plhm Size: 87KB - Virtual size: 104KB

.knxb Size: 1024B - Virtual size: 4KB

.foab Size: 512B - Virtual size: 4KB

.tbtd Size: 512B - Virtual size: 4KB

.seey Size: 1024B - Virtual size: 4KB

.ceqj Size: 512B - Virtual size: 4KB

.rxta Size: 4KB - Virtual size: 3KB

.rsrc Size: 512B - Virtual size: 16B

.qffy Size: 1024B - Virtual size: 4KB

.ahiy Size: 1024B - Virtual size: 4KB

.plhm
Size: 87KB - Virtual size: 104KB

.knxb
Size: 1024B - Virtual size: 4KB

.foab
Size: 512B - Virtual size: 4KB

.tbtd
Size: 512B - Virtual size: 4KB

.seey
Size: 1024B - Virtual size: 4KB

.ceqj
Size: 512B - Virtual size: 4KB

.rxta
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 512B - Virtual size: 16B

.qffy
Size: 1024B - Virtual size: 4KB

.ahiy
Size: 1024B - Virtual size: 4KB