8e683cca8a4021942fd40a5a665b5b8e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8e683cca8a4021942fd40a5a665b5b8e_JaffaCakes118
Size

114KB
MD5

8e683cca8a4021942fd40a5a665b5b8e
SHA1

24e7950a45d5198d2017c6901ec6f4d498c52ec6
SHA256

eed324f9106242f6cfc1f610b2570e7e0d1c79edebaa82242d4e9f0ffae62c94
SHA512

87eb5f25718b361af26f847ab4bd2f451e865eae8acaef1c4cf2db5ecd7d8531864056f289b0a348e0907cd5499e421386487ffe50cef5afbf09d11ef3d6e031
SSDEEP

768:jpZbY3Tl76GovBme2ZRu4Pbbl1wby5CXicQiswhGLa2x9Z:jTgJ76Govt23uI1ZMXgTLjx9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8e683cca8a4021942fd40a5a665b5b8e_JaffaCakes118

Files

8e683cca8a4021942fd40a5a665b5b8e_JaffaCakes118
.exe windows:1 windows x86 arch:x86

f5d76d06e3169b46892efe5b9227fe86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
GetSystemTimeAsFileTime
LoadLibraryW
GetCommandLineW
lstrlenW
FormatMessageW
MultiByteToWideChar
ReadFile
DeleteCriticalSection
GetTickCount
InterlockedIncrement
GetSystemTimeAsFileTime
InterlockedIncrement
SetLastError
HeapDestroy
GetProcAddress
LoadLibraryW
SetEvent
WaitForSingleObject
LocalAlloc
GetCurrentProcessId
QueryPerformanceCounter
FormatMessageW
GetTickCount
InterlockedIncrement

Sections

.lstn
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.njqw
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pymx
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kdqm
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.twms
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmlk
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vkrb
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jbeu
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ijfv
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f5d76d06e3169b46892efe5b9227fe86

Headers

File Characteristics

Imports

kernel32

Sections

.lstn Size: 102KB - Virtual size: 120KB

.njqw Size: 1024B - Virtual size: 4KB

.pymx Size: 512B - Virtual size: 4KB

.kdqm Size: 512B - Virtual size: 4KB

.twms Size: 1024B - Virtual size: 4KB

.vmlk Size: 512B - Virtual size: 4KB

.vkrb Size: 3KB - Virtual size: 3KB

.rsrc Size: 512B - Virtual size: 24B

.jbeu Size: 1024B - Virtual size: 4KB

.ijfv Size: 1024B - Virtual size: 4KB

.lstn
Size: 102KB - Virtual size: 120KB

.njqw
Size: 1024B - Virtual size: 4KB

.pymx
Size: 512B - Virtual size: 4KB

.kdqm
Size: 512B - Virtual size: 4KB

.twms
Size: 1024B - Virtual size: 4KB

.vmlk
Size: 512B - Virtual size: 4KB

.vkrb
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 512B - Virtual size: 24B

.jbeu
Size: 1024B - Virtual size: 4KB

.ijfv
Size: 1024B - Virtual size: 4KB