8e41045bbc23d1140fa75cc0e80328ae_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8e41045bbc23d1140fa75cc0e80328ae_JaffaCakes118
Size

475KB
MD5

8e41045bbc23d1140fa75cc0e80328ae
SHA1

b1719656504e8fbe3dabbed51a58bd66d29e412f
SHA256

54b01ec577073fa88186e573dfd4b31f2cfcc0ba831c33531996932faf331adc
SHA512

06a1f225d055c17c4cc0d6aea2f520078b9944393f6b1cd7719a556d38585966758839a34383ed512233a9450bf3db31f8d422ca3a4f4f6822bc0d9a2a13503d
SSDEEP

6144:53v4k5/iS9ifl5uNpNz/gwq2AGy+92c12G5usseHxyzITxF0r+jrTr5seXZKg4Xf:53v4HS9il5uJpFDJVRWeHuITxSGdFoD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8e41045bbc23d1140fa75cc0e80328ae_JaffaCakes118

Files

8e41045bbc23d1140fa75cc0e80328ae_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

j9ih.7vq
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 712KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mnlme0a2
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qz6wdtbt
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

eu5qbx1f
Size: - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

q67fya3h
Size: 402KB - Virtual size: 404KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ueplri21
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f433e7fcc51e68080022754836705744

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: - Virtual size: 64KB

j9ih.7vq Size: 16KB - Virtual size: 16KB

.data Size: - Virtual size: 12KB

.rsrc Size: 52KB - Virtual size: 712KB

mnlme0a2 Size: - Virtual size: 8KB

qz6wdtbt Size: - Virtual size: 4KB

eu5qbx1f Size: - Virtual size: 284KB

q67fya3h Size: 402KB - Virtual size: 404KB

ueplri21 Size: 4KB - Virtual size: 4KB

.text
Size: - Virtual size: 64KB

j9ih.7vq
Size: 16KB - Virtual size: 16KB

.data
Size: - Virtual size: 12KB

.rsrc
Size: 52KB - Virtual size: 712KB

mnlme0a2
Size: - Virtual size: 8KB

qz6wdtbt
Size: - Virtual size: 4KB

eu5qbx1f
Size: - Virtual size: 284KB

q67fya3h
Size: 402KB - Virtual size: 404KB

ueplri21
Size: 4KB - Virtual size: 4KB