b6e88c1c046e22327958bfd7fddb2ede_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b6e88c1c046e22327958bfd7fddb2ede_JaffaCakes118
Size

9.9MB
MD5

b6e88c1c046e22327958bfd7fddb2ede
SHA1

1993e146a74a76cf8f19ed4bedb8d7f55f662df6
SHA256

4748e427a1592a969635f1bbc00a1819be7de31e56b7a9d4e5b0e17f967ae81a
SHA512

edee84672bd42e48a9b0e35cc51f1a15356140f254a041d8da4602fc7fea70b19853f916a500f6df067f587026ceb7740cf9fe3870b072329a0ddaf92fb64c87
SSDEEP

49152:Cye8wu8vb2g4tk+EvcAdc2pfBWDooGrypPDwazZ:m8w8AdcSfBWDooGrOPHl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6e88c1c046e22327958bfd7fddb2ede_JaffaCakes118

Files

b6e88c1c046e22327958bfd7fddb2ede_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5d129c3b6a642d0c529630f62c156352

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

InitializeCriticalSection
GetProcAddress
LocalFree
RaiseException
LocalAlloc
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
SearchPathA
ResumeThread
WriteProcessMemory
GetPrivateProfileSectionA
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW

user32

DefWindowProcA
AdjustWindowRectEx

Sections

0
Size: 149KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 24KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2
Size: 3KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 9.7MB - Virtual size: 9.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4
Size: - Virtual size: 65KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5
Size: 44KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

7
Size: 7KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5d129c3b6a642d0c529630f62c156352

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

0 Size: 149KB - Virtual size: 276KB

1 Size: 24KB - Virtual size: 76KB

2 Size: 3KB - Virtual size: 27KB

3 Size: 9.7MB - Virtual size: 9.7MB

4 Size: - Virtual size: 65KB

5 Size: 44KB - Virtual size: 68KB

6 Size: 3KB - Virtual size: 3KB

7 Size: 7KB - Virtual size: 28KB

0
Size: 149KB - Virtual size: 276KB

1
Size: 24KB - Virtual size: 76KB

2
Size: 3KB - Virtual size: 27KB

3
Size: 9.7MB - Virtual size: 9.7MB

4
Size: - Virtual size: 65KB

5
Size: 44KB - Virtual size: 68KB

6
Size: 3KB - Virtual size: 3KB

7
Size: 7KB - Virtual size: 28KB