95ee86e8822736fb2dee61507516ca17_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

95ee86e8822736fb2dee61507516ca17_JaffaCakes118
Size

112KB
MD5

95ee86e8822736fb2dee61507516ca17
SHA1

621535bfc0617cbf613f9d80a77f0e314886f587
SHA256

0fdc0450edeb4e10c82e130a6bcf870a4078ffffbb6e06b71e1cf8ebb5e2db9d
SHA512

6bb67fac070bbec53c3f25b0cf88746b0bae47c99cfc34ed019894866f96e086302e662550f8519f5217a5756444e2cf64ef3c1bfbf8fe877bc79006300dfe13
SSDEEP

768:Qby08MAEKWE/affWPqzSyIEpGFfWZLklzzUjNBvLwEP/VdTxb:Q0LK4cWyXpGFYwcBv0EP5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
95ee86e8822736fb2dee61507516ca17_JaffaCakes118

Files

95ee86e8822736fb2dee61507516ca17_JaffaCakes118
.exe windows:1 windows x86 arch:x86

7cf09ced2549f4557450c6a8b4ad81a3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
HeapFree
HeapAlloc
GetCommandLineA
InterlockedIncrement
UnhandledExceptionFilter
TerminateProcess
LoadLibraryA
GetVersionExA
SetLastError
GetProcAddress
CreateFileW
DeleteCriticalSection
CreateThread
GetProcAddress
GetCurrentThreadId
QueryPerformanceCounter
LoadLibraryA
DeleteCriticalSection
SetUnhandledExceptionFilter
GetProcessHeap
WriteFile
InitializeCriticalSection
MultiByteToWideChar
InitializeCriticalSection

Sections

.kjhi
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ibde
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fxht
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ytur
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ugbc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pcrp
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ajba
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yosn
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lojy
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7cf09ced2549f4557450c6a8b4ad81a3

Headers

File Characteristics

Imports

kernel32

Sections

.kjhi Size: 102KB - Virtual size: 120KB

.ibde Size: 1024B - Virtual size: 4KB

.fxht Size: 1KB - Virtual size: 4KB

.ytur Size: 1024B - Virtual size: 4KB

.ugbc Size: 512B - Virtual size: 4KB

.pcrp Size: 512B - Virtual size: 4KB

.ajba Size: 512B - Virtual size: 4KB

.yosn Size: 2KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 12B

.lojy Size: 1024B - Virtual size: 4KB

.kjhi
Size: 102KB - Virtual size: 120KB

.ibde
Size: 1024B - Virtual size: 4KB

.fxht
Size: 1KB - Virtual size: 4KB

.ytur
Size: 1024B - Virtual size: 4KB

.ugbc
Size: 512B - Virtual size: 4KB

.pcrp
Size: 512B - Virtual size: 4KB

.ajba
Size: 512B - Virtual size: 4KB

.yosn
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 12B

.lojy
Size: 1024B - Virtual size: 4KB