b6a962b3d4649b43184a8721d6139599_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b6a962b3d4649b43184a8721d6139599_JaffaCakes118
Size

159KB
MD5

b6a962b3d4649b43184a8721d6139599
SHA1

d62f0c2e95e389eb64f558c14e472be40789df0a
SHA256

6adca016c75c0c9789f955cd6a688858e07b2c82ce1e4362dc81e4070b079022
SHA512

03a22fa197b7718937d53da9e53a1cca1d48d267ba465058ec5b7b4cf4f0676ebdb1280ece57dc3a1a37690fd203c28032a83ca88493ef74d617173a427a8962
SSDEEP

3072:RJQ+DBYonhOJTB9nvzn2WfBhfIj8vG3ZJDgDOc1/UrRFe:Lw1lvTD2DMDOl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6a962b3d4649b43184a8721d6139599_JaffaCakes118

Files

b6a962b3d4649b43184a8721d6139599_JaffaCakes118
.exe windows:5 windows x86 arch:x86

68603935003cbad5f1d67812bcf6123b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

atoi

shlwapi

PathGetArgsW

kernel32

GetModuleHandleExW
GetTickCount
GetProcessTimes
TerminateThread
EnumResourceLanguagesA
GetStartupInfoW
ClearCommError
SetEndOfFile

user32

CheckMenuRadioItem
GetScrollRange
SetScrollRange
GetDesktopWindow
GetSystemMetrics
AdjustWindowRectEx
ChangeClipboardChain
AdjustWindowRect

gdi32

GdiGetBatchLimit
PtVisible
GetCurrentPositionEx
ExtTextOutA
EnumICMProfilesW

Exports

Exports

?IDIODIKJDL@@YGKKKKK@Z
?IOEDOIIUdljkkjhKUHKDHkhfkdhs@@YGKK@Z
?NMDXCnmD@@YGKKKK@Z
?Xvfc@@YGKPAK@Z

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

edata
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

data
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.etext
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mydata
Size: 512B - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

gdata
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 145KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

68603935003cbad5f1d67812bcf6123b

Headers

File Characteristics

Imports

msvcrt

shlwapi

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 4KB

.itext Size: 2KB - Virtual size: 2KB

.data Size: 1KB - Virtual size: 1KB

edata Size: 512B - Virtual size: 128B

data Size: 512B - Virtual size: 128B

.etext Size: 1KB - Virtual size: 1KB

.mydata Size: 512B - Virtual size: 220B

gdata Size: 512B - Virtual size: 8B

.rsrc Size: 145KB - Virtual size: 145KB

.reloc Size: 1024B - Virtual size: 728B

.text
Size: 4KB - Virtual size: 4KB

.itext
Size: 2KB - Virtual size: 2KB

.data
Size: 1KB - Virtual size: 1KB

edata
Size: 512B - Virtual size: 128B

data
Size: 512B - Virtual size: 128B

.etext
Size: 1KB - Virtual size: 1KB

.mydata
Size: 512B - Virtual size: 220B

gdata
Size: 512B - Virtual size: 8B

.rsrc
Size: 145KB - Virtual size: 145KB

.reloc
Size: 1024B - Virtual size: 728B