ae898f5eda853921f9328a5a09cb43a7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ae898f5eda853921f9328a5a09cb43a7_JaffaCakes118
Size

1.1MB
MD5

ae898f5eda853921f9328a5a09cb43a7
SHA1

bb1034c7c24064d5cca7e7ba66596cf233dd11be
SHA256

a69504ac7296fb26984d11f04419b37bbe755821752dfe63a585d41b7c74f555
SHA512

f9602004ff57b6fc7345edc8655e5a74ae92abf4a14127697b5ba00590f255dbe5d778da4517ece3fd667814216001ffa4bb083976306998b6bdfa4f93eb10f3
SSDEEP

24576:mWRPgODLnWcYbT533o5PtGvIJx7F4l7dlm4ijGuKIbZQJSwmMcdli8sgi:3xDLnWcO58Prx7Fs7MGaYSwmX49gi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ae898f5eda853921f9328a5a09cb43a7_JaffaCakes118

Files

ae898f5eda853921f9328a5a09cb43a7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: - Virtual size: 828KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 24KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gj38ua.
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zluxqo5e
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 734KB - Virtual size: 736KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

jx555rj5
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ihpk0rtc
Size: 422KB - Virtual size: 424KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

881lmq4u
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f433e7fcc51e68080022754836705744

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: - Virtual size: 828KB

.itext Size: - Virtual size: 4KB

.data Size: - Virtual size: 24KB

.bss Size: - Virtual size: 24KB

.gj38ua. Size: - Virtual size: 12KB

.tls Size: - Virtual size: 4KB

.rdata Size: - Virtual size: 4KB

zluxqo5e Size: - Virtual size: 68KB

.rsrc Size: 734KB - Virtual size: 736KB

jx555rj5 Size: - Virtual size: 4KB

ihpk0rtc Size: 422KB - Virtual size: 424KB

881lmq4u Size: 512B - Virtual size: 4KB

.text
Size: - Virtual size: 828KB

.itext
Size: - Virtual size: 4KB

.data
Size: - Virtual size: 24KB

.bss
Size: - Virtual size: 24KB

.gj38ua.
Size: - Virtual size: 12KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: - Virtual size: 4KB

zluxqo5e
Size: - Virtual size: 68KB

.rsrc
Size: 734KB - Virtual size: 736KB

jx555rj5
Size: - Virtual size: 4KB

ihpk0rtc
Size: 422KB - Virtual size: 424KB

881lmq4u
Size: 512B - Virtual size: 4KB