a29991267061e1ea9be3c75beba97382_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a29991267061e1ea9be3c75beba97382_JaffaCakes118
Size

116KB
MD5

a29991267061e1ea9be3c75beba97382
SHA1

1a0e4748f7571b77cbdd029313d40b3846fd460b
SHA256

16ec0502613732ffbd92beac2364367a13d80966587b7d78881632236b646691
SHA512

44d9cebf765e14c9c08967430f38fa4bc0387860689ea68b32222970a565c91f79bd4efb70d16c3e18d73535de6b61b07f3168364a7f70f0f7c0b1aaeea415a3
SSDEEP

768:VrXtpBfqMBFQwjqfiZ3fH+NoD5hLiX0vdfxVDgzn:V7tp53TjqafeNu58Xifq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a29991267061e1ea9be3c75beba97382_JaffaCakes118

Files

a29991267061e1ea9be3c75beba97382_JaffaCakes118
.exe windows:1 windows x86 arch:x86

8bc9af27df92ee6406d1c8f3f9abafd6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
lstrcpyW
DeleteCriticalSection
MultiByteToWideChar
GetCurrentProcess
UnhandledExceptionFilter
lstrcpyW
GetTickCount
LocalAlloc
SetEvent
GetModuleFileNameA
lstrcmpiW
ExitProcess
EnterCriticalSection
GetTickCount
LoadLibraryA
WideCharToMultiByte
FormatMessageW
SetUnhandledExceptionFilter
QueryPerformanceCounter
QueryPerformanceCounter
GetStartupInfoA
InterlockedDecrement
LocalFree
UnhandledExceptionFilter

Sections

.unfm
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vksu
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wdvb
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jghk
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bqms
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsaq
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ychk
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kiyk
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dvrb
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8bc9af27df92ee6406d1c8f3f9abafd6

Headers

File Characteristics

Imports

kernel32

Sections

.unfm Size: 102KB - Virtual size: 120KB

.vksu Size: 1024B - Virtual size: 4KB

.wdvb Size: 512B - Virtual size: 4KB

.jghk Size: 512B - Virtual size: 4KB

.bqms Size: 1024B - Virtual size: 4KB

.nsaq Size: 512B - Virtual size: 4KB

.ychk Size: 5KB - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 28B

.kiyk Size: 1024B - Virtual size: 4KB

.dvrb Size: 1024B - Virtual size: 4KB

.unfm
Size: 102KB - Virtual size: 120KB

.vksu
Size: 1024B - Virtual size: 4KB

.wdvb
Size: 512B - Virtual size: 4KB

.jghk
Size: 512B - Virtual size: 4KB

.bqms
Size: 1024B - Virtual size: 4KB

.nsaq
Size: 512B - Virtual size: 4KB

.ychk
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 28B

.kiyk
Size: 1024B - Virtual size: 4KB

.dvrb
Size: 1024B - Virtual size: 4KB