aa570e1529f0b0a52b5d5364e2b5eb79_JaffaCakes118

General

Target

aa570e1529f0b0a52b5d5364e2b5eb79_JaffaCakes118
Size

476KB
MD5

aa570e1529f0b0a52b5d5364e2b5eb79
SHA1

5428a1de07f7be3cbc758f3b7be3fb6c751849cd
SHA256

ad313e505dfb35bf05572c974f07c24fe2faa13755f56d4819ef5990cb09d2b4
SHA512

056713d52b50aecc592f1d81c9869bca0b9b9b708f1aa1f7a446ec28bff54dac7d6a0cf24933c8fc75a8b954eb44135d5037dc004682e24de6cd342fef50f964
SSDEEP

1536:exW9LlWzWR4/044dG0g71I+z7/y5mBvKR/zqBvmKx9t7hHNZ:MWjfFY1JvVKR/gOK75htZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa570e1529f0b0a52b5d5364e2b5eb79_JaffaCakes118

Files

aa570e1529f0b0a52b5d5364e2b5eb79_JaffaCakes118
.dll windows:4 windows x86 arch:x86

0dbde1124ff1a4ce0be2b107a8935489

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
GetCommandLineA
GetVersionExA
GetModuleHandleA
GetStartupInfoA

user32

DispatchMessageA
TranslateMessage
TranslateAcceleratorA
GetMessageA
LoadAcceleratorsA
LoadStringA
RegisterClassExA
LoadCursorA
LoadIconA
UpdateWindow
ShowWindow
CreateWindowExA
PostQuitMessage
EndPaint
DrawTextA
GetClientRect
BeginPaint
DialogBoxParamA
DestroyWindow
DefWindowProcA
EndDialog

Sections

.text
Size: 72KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

sdata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rxgez8
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0dbde1124ff1a4ce0be2b107a8935489

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 72KB - Virtual size: 88KB

sdata Size: - Virtual size: 12KB

.reloc Size: - Virtual size: 12KB

rxgez8 Size: - Virtual size: 52KB

.data Size: 4KB - Virtual size: 248KB

.idata Size: 52KB - Virtual size: 52KB

.rsrc Size: 7KB - Virtual size: 8KB

.text
Size: 72KB - Virtual size: 88KB

sdata
Size: - Virtual size: 12KB

.reloc
Size: - Virtual size: 12KB

rxgez8
Size: - Virtual size: 52KB

.data
Size: 4KB - Virtual size: 248KB

.idata
Size: 52KB - Virtual size: 52KB

.rsrc
Size: 7KB - Virtual size: 8KB