87c0d8fa1dcb75ce9db079b98043e091_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

87c0d8fa1dcb75ce9db079b98043e091_JaffaCakes118
Size

4.6MB
MD5

87c0d8fa1dcb75ce9db079b98043e091
SHA1

802257d386dcd539daf7446c3a41b4ad5115a4df
SHA256

2d5eecff33581737afceb6a1524b4895b10e914507f7c3e69d0247ec23e533cc
SHA512

1b60a0e7f490049bd318fc28940c18fe68eb133fea3336bcc585d0e6121a03cc5ac2f7ed0ddae204b777a44da438b5b39e39d92078ae4fc816aeae90d214335c
SSDEEP

98304:WSuisYx7+GmOUg1t6I3MWx2FMgZRRIN7xtlKJL+xxtG:WSui5Z+/gj6ODxWJRRS1x0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87c0d8fa1dcb75ce9db079b98043e091_JaffaCakes118

Files

87c0d8fa1dcb75ce9db079b98043e091_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9434c25405afaf12201a221d00578eb9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetVolumeLabelA
CreateFileA
OpenProcess
LocalHandle
lstrlenW
GetProcAddress
GetModuleHandleA
EnumDateFormatsW
GetCurrentThreadId
GetCurrentProcessId
OpenFileMappingA

ntdll

RtlAddVectoredExceptionHandler
RtlRemoveVectoredExceptionHandler

Sections

w
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

x
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

w
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

w
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

w
Size: 2KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

2iU
Size: 130KB - Virtual size: 128KB

IMAGE_SCN_MEM_READ

AIJ
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Lpt
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BRJ
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

YFb
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pWY
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9434c25405afaf12201a221d00578eb9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ntdll

Sections

w Size: 2KB - Virtual size: 4KB

x Size: 2KB - Virtual size: 4KB

w Size: 2KB - Virtual size: 4KB

.tls Size: 2KB - Virtual size: 4KB

w Size: 2KB - Virtual size: 4KB

.RSRC Size: 1.8MB - Virtual size: 1.8MB

w Size: 2KB - Virtual size: 1.7MB

2iU Size: 130KB - Virtual size: 128KB

AIJ Size: 14KB - Virtual size: 12KB

Lpt Size: 14KB - Virtual size: 12KB

BRJ Size: 14KB - Virtual size: 12KB

YFb Size: 14KB - Virtual size: 12KB

pWY Size: 14KB - Virtual size: 12KB

w
Size: 2KB - Virtual size: 4KB

x
Size: 2KB - Virtual size: 4KB

w
Size: 2KB - Virtual size: 4KB

.tls
Size: 2KB - Virtual size: 4KB

w
Size: 2KB - Virtual size: 4KB

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

w
Size: 2KB - Virtual size: 1.7MB

2iU
Size: 130KB - Virtual size: 128KB

AIJ
Size: 14KB - Virtual size: 12KB

Lpt
Size: 14KB - Virtual size: 12KB

BRJ
Size: 14KB - Virtual size: 12KB

YFb
Size: 14KB - Virtual size: 12KB

pWY
Size: 14KB - Virtual size: 12KB