874a2b6a3d008e1be5c97f23d2170581_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

874a2b6a3d008e1be5c97f23d2170581_JaffaCakes118
Size

102KB
MD5

874a2b6a3d008e1be5c97f23d2170581
SHA1

45e33ec88475d7a691a5dfe9bbacbc536fbb25ef
SHA256

2c792187db8b440babff31872056b126337c95fa5b6f38aeebb3027e9f6329db
SHA512

7b07ab9a65beeaa057faecc24a3d8a1a3abc15d0d9b7e5ec2b4f9e550f7551ae4b4d7b6221ae51782d07b95a2beef2740549ace8a73aed2a1c57c7285fe01d53
SSDEEP

768:cpw+evBs6MPJxmJu9cdvaJf0mLdIQclzLlsYJsCTaO42NP7qW7Vc8:Ww+eBsjcs9Ivg0wu9hVnpWGVR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
874a2b6a3d008e1be5c97f23d2170581_JaffaCakes118

Files

874a2b6a3d008e1be5c97f23d2170581_JaffaCakes118
.exe windows:1 windows x86 arch:x86

8ee28ef523e5aaf4f0d360ebcfdb1bcb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetProcAddress
GetVersionExA
InterlockedIncrement
GetStartupInfoA
GetModuleFileNameA
WaitForSingleObject
GetVersionExA
VirtualFree
HeapAlloc
MultiByteToWideChar
GetSystemTimeAsFileTime
LoadLibraryA
lstrcpyW
LeaveCriticalSection
GetProcAddress
HeapAlloc
Sleep
HeapReAlloc
TerminateProcess
CreateThread
InitializeCriticalSection
GetProcAddress
GetVersionExA
LocalAlloc

Sections

.jcsu
Size: 87KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.qfyl
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ihfa
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tkbg
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ujtg
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ulvx
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yyxh
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.glbs
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rowa
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gaqt
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8ee28ef523e5aaf4f0d360ebcfdb1bcb

Headers

File Characteristics

Imports

kernel32

Sections

.jcsu Size: 87KB - Virtual size: 104KB

.qfyl Size: 1024B - Virtual size: 4KB

.ihfa Size: 1KB - Virtual size: 4KB

.tkbg Size: 1024B - Virtual size: 4KB

.ujtg Size: 512B - Virtual size: 4KB

.ulvx Size: 512B - Virtual size: 4KB

.yyxh Size: 512B - Virtual size: 4KB

.glbs Size: 4KB - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 4KB

.rowa Size: 512B - Virtual size: 4KB

.gaqt Size: 1024B - Virtual size: 4KB

.jcsu
Size: 87KB - Virtual size: 104KB

.qfyl
Size: 1024B - Virtual size: 4KB

.ihfa
Size: 1KB - Virtual size: 4KB

.tkbg
Size: 1024B - Virtual size: 4KB

.ujtg
Size: 512B - Virtual size: 4KB

.ulvx
Size: 512B - Virtual size: 4KB

.yyxh
Size: 512B - Virtual size: 4KB

.glbs
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 4KB

.rowa
Size: 512B - Virtual size: 4KB

.gaqt
Size: 1024B - Virtual size: 4KB