a8593ba587b5a05eb68c4c4a44580abe_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a8593ba587b5a05eb68c4c4a44580abe_JaffaCakes118
Size

268KB
MD5

a8593ba587b5a05eb68c4c4a44580abe
SHA1

f254f9930f1411558c1dc0046227522db66294ab
SHA256

aec3407309a15b8d5f0439d32043550810ddfba0e60bc5cd5786f08321e94c78
SHA512

535c563c28199675e9c40af76398e34d111cf88e58b09370c8b96d6c365ba237d4dfdb7b1dbb7a5f5b83b5de2ddef3686b24d2f0606c320fd69709f90ed1cc34
SSDEEP

6144:n00Vzurnbs5t38dX6pYE4GU7kpEkeTUqE8UYAQ/78Yu8HkaLQEV8:BkoRiRYDRw/ZEW2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a8593ba587b5a05eb68c4c4a44580abe_JaffaCakes118

Files

a8593ba587b5a05eb68c4c4a44580abe_JaffaCakes118
.dll windows:4 windows x86 arch:x86

1b65d3b22a0e17df495a71573f91cab3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
DeleteCriticalSection
EnterCriticalSection
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WriteFile

msvcrt

__dllonexit
_amsg_exit
_initterm
_iob
_lock
_onexit
_unlock
calloc
free
fwrite
malloc
memcpy
strlen
strncmp
abort
system
vfprintf

Exports

Exports

DllMain@12
_Z12initCallbackv

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 948B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 115B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/19
Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/31
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/45
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/57
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/70
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/81
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/92
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b65d3b22a0e17df495a71573f91cab3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 24B

.rdata Size: 17KB - Virtual size: 17KB

.bss Size: - Virtual size: 948B

.edata Size: 512B - Virtual size: 115B

.idata Size: 1KB - Virtual size: 1KB

.CRT Size: 512B - Virtual size: 44B

.tls Size: 512B - Virtual size: 32B

.reloc Size: 512B - Virtual size: 508B

/4 Size: 512B - Virtual size: 448B

/19 Size: 197KB - Virtual size: 197KB

/31 Size: 7KB - Virtual size: 6KB

/45 Size: 7KB - Virtual size: 6KB

/57 Size: 2KB - Virtual size: 1KB

/70 Size: 1KB - Virtual size: 1KB

/81 Size: 3KB - Virtual size: 3KB

/92 Size: 512B - Virtual size: 480B

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 24B

.rdata
Size: 17KB - Virtual size: 17KB

.bss
Size: - Virtual size: 948B

.edata
Size: 512B - Virtual size: 115B

.idata
Size: 1KB - Virtual size: 1KB

.CRT
Size: 512B - Virtual size: 44B

.tls
Size: 512B - Virtual size: 32B

.reloc
Size: 512B - Virtual size: 508B

/4
Size: 512B - Virtual size: 448B

/19
Size: 197KB - Virtual size: 197KB

/31
Size: 7KB - Virtual size: 6KB

/45
Size: 7KB - Virtual size: 6KB

/57
Size: 2KB - Virtual size: 1KB

/70
Size: 1KB - Virtual size: 1KB

/81
Size: 3KB - Virtual size: 3KB

/92
Size: 512B - Virtual size: 480B