a953a7a6d950ea531923890ec46d6b54_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a953a7a6d950ea531923890ec46d6b54_JaffaCakes118
Size

145KB
MD5

a953a7a6d950ea531923890ec46d6b54
SHA1

e1fe5f7ee80e3fda56a3deb417dbd3b882d8ec4b
SHA256

b0d2a1df56838e924c5a669d334d29a55282c05c6553e8dc5acda7fbbaa9ae2c
SHA512

858f3e7679e3fb55143e6b13b896a37c07e016ce81bf72eaf15ebe29e77a6ee2e579fc42aac518cea7ab8f609d73ee84cc302664674f4d2c102d0e066f15e731
SSDEEP

768:uYRbnF5kRMZ6gmiONZnprL82yr1A7rOVlq6bmCssWqq5OjifR9KrIk1CH6aA:uonH6wpENg2h7rKlvZZa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a953a7a6d950ea531923890ec46d6b54_JaffaCakes118

Files

a953a7a6d950ea531923890ec46d6b54_JaffaCakes118
.exe windows:1 windows x86 arch:x86

7eb568193b7e225e1b40347822699748

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
SetFilePointer
UnhandledExceptionFilter
LocalFree
lstrlenW
ExitProcess
CloseHandle
GetVersionExA
WriteFile
DeleteCriticalSection
GetProcessHeap
SetEvent
VirtualAlloc
HeapDestroy
Sleep
FormatMessageW
SetEvent
GetModuleHandleW
HeapFree
InterlockedDecrement
HeapDestroy
TerminateProcess
InitializeCriticalSection
GetACP
InitializeCriticalSection
VirtualAlloc
QueryPerformanceCounter
GetModuleHandleA
InterlockedDecrement
QueryPerformanceCounter
LoadLibraryW
GetCurrentThreadId
LoadLibraryA
WaitForSingleObject
HeapAlloc
lstrlenW
CreateFileW
LoadLibraryA
GetVersionExA
GetModuleFileNameA
LeaveCriticalSection
LeaveCriticalSection
GetCurrentThreadId
lstrlenW
WriteFile

Sections

.ohbb
Size: 133KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.swtv
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dwed
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ijus
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.falx
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xivg
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.biur
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rqev
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wkbi
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7eb568193b7e225e1b40347822699748

Headers

File Characteristics

Imports

kernel32

Sections

.ohbb Size: 133KB - Virtual size: 156KB

.swtv Size: 1024B - Virtual size: 4KB

.dwed Size: 512B - Virtual size: 4KB

.ijus Size: 512B - Virtual size: 4KB

.falx Size: 1KB - Virtual size: 4KB

.xivg Size: 512B - Virtual size: 4KB

.biur Size: 2KB - Virtual size: 2KB

.rsrc Size: 2KB - Virtual size: 4KB

.rqev Size: 1024B - Virtual size: 4KB

.wkbi Size: 1024B - Virtual size: 4KB

.ohbb
Size: 133KB - Virtual size: 156KB

.swtv
Size: 1024B - Virtual size: 4KB

.dwed
Size: 512B - Virtual size: 4KB

.ijus
Size: 512B - Virtual size: 4KB

.falx
Size: 1KB - Virtual size: 4KB

.xivg
Size: 512B - Virtual size: 4KB

.biur
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 2KB - Virtual size: 4KB

.rqev
Size: 1024B - Virtual size: 4KB

.wkbi
Size: 1024B - Virtual size: 4KB