aed45089c88a38405affe3437d0b3686_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

aed45089c88a38405affe3437d0b3686_JaffaCakes118
Size

114KB
MD5

aed45089c88a38405affe3437d0b3686
SHA1

b1647e73579f1e94109335045e014e5c272c2fd6
SHA256

d73c36418bb7fa59ea71caa3752593d89a42fd9edc3105e3e5ee65bea13d86d3
SHA512

bfa9f9d5bb2f3cda8a451b6eaf5855f75239283c3cfd10936305b531674fa9a8efe11f751fd65d1208aa3f4c24f7d1c61a92cdde3b476a8c96ad2416cc5d8a28
SSDEEP

768:p/WGemrfBV667fYx7soioHYvWG07x/RgDgjpAWym7FMo7MG1UVZ+:pu8BV6mYpxHegFnymKoX1UV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aed45089c88a38405affe3437d0b3686_JaffaCakes118

Files

aed45089c88a38405affe3437d0b3686_JaffaCakes118
.exe windows:1 windows x86 arch:x86

d482545ff46b5cc019cd435c9f7d97f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetTickCount
GetCurrentProcess
FreeLibrary
InitializeCriticalSection
GetCurrentProcess
HeapReAlloc
lstrcmpiW
HeapDestroy
GetTickCount
VirtualAlloc
QueryPerformanceCounter
ReadFile
lstrlenW
SetLastError
lstrcpyW
GetCommandLineA
CloseHandle
GetModuleHandleW
InitializeCriticalSection
lstrlenW
GetProcAddress
CreateFileW
VirtualFree
InitializeCriticalSection

Sections

.rmjj
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cumm
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qwiq
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdwf
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qtgt
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yvmv
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yqff
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xakq
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdja
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d482545ff46b5cc019cd435c9f7d97f8

Headers

File Characteristics

Imports

kernel32

Sections

.rmjj Size: 102KB - Virtual size: 120KB

.cumm Size: 1024B - Virtual size: 4KB

.qwiq Size: 512B - Virtual size: 4KB

.fdwf Size: 512B - Virtual size: 4KB

.qtgt Size: 1024B - Virtual size: 4KB

.yvmv Size: 512B - Virtual size: 4KB

.yqff Size: 3KB - Virtual size: 3KB

.rsrc Size: 512B - Virtual size: 12B

.xakq Size: 1024B - Virtual size: 4KB

.fdja Size: 1024B - Virtual size: 4KB

.rmjj
Size: 102KB - Virtual size: 120KB

.cumm
Size: 1024B - Virtual size: 4KB

.qwiq
Size: 512B - Virtual size: 4KB

.fdwf
Size: 512B - Virtual size: 4KB

.qtgt
Size: 1024B - Virtual size: 4KB

.yvmv
Size: 512B - Virtual size: 4KB

.yqff
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 512B - Virtual size: 12B

.xakq
Size: 1024B - Virtual size: 4KB

.fdja
Size: 1024B - Virtual size: 4KB