83b49b0a8187feedc06b6443250329aa_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

83b49b0a8187feedc06b6443250329aa_JaffaCakes118
Size

148KB
MD5

83b49b0a8187feedc06b6443250329aa
SHA1

8dcbcd3a970cb31af4ce2f909c985993d748abf3
SHA256

1add2868cce5a5804038a9d39a8327077a0b3d47c454268497bb580fd56ab1b1
SHA512

cb78abef966a19a27bc7599f311d0a9d017655b1d5b32f577b925b1fce7186fa3edc619d60add771254de7fce913961fa1f7c7e7fcbdf32f2eb9acc12bfe147c
SSDEEP

3072:lyOzWINlqXmoEh79Gl/l8EDZHFJBe5gdOW3xH3hoFJyDR+RjTNj2wl4R:oOzWIHqVYIl/l8EDnegO6H2MR+Rdy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83b49b0a8187feedc06b6443250329aa_JaffaCakes118

Files

83b49b0a8187feedc06b6443250329aa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

97d0062ee40a69dd10a087b00adfa66d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

InitializeCriticalSection
GetProcAddress
LocalFree
RaiseException
LocalAlloc
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
DuplicateHandle
GetShortPathNameA
ResumeThread
WriteProcessMemory
GetPrivateProfileSectionA
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW

user32

DefWindowProcA
AdjustWindowRectEx

Sections

0
Size: - Virtual size: 396KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

4
Size: - Virtual size: 532B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

5
Size: 46KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

7
Size: 7KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

97d0062ee40a69dd10a087b00adfa66d

Headers

File Characteristics

Imports

kernel32

user32

Sections

0 Size: - Virtual size: 396KB

1 Size: 82KB - Virtual size: 84KB

2 Size: - Virtual size: 2KB

3 Size: 8KB - Virtual size: 10KB

4 Size: - Virtual size: 532B

5 Size: 46KB - Virtual size: 71KB

6 Size: 3KB - Virtual size: 3KB

7 Size: 7KB - Virtual size: 28KB

0
Size: - Virtual size: 396KB

1
Size: 82KB - Virtual size: 84KB

2
Size: - Virtual size: 2KB

3
Size: 8KB - Virtual size: 10KB

4
Size: - Virtual size: 532B

5
Size: 46KB - Virtual size: 71KB

6
Size: 3KB - Virtual size: 3KB

7
Size: 7KB - Virtual size: 28KB