b72550ee927b52adaa82d100efeb85b3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b72550ee927b52adaa82d100efeb85b3_JaffaCakes118
Size

113KB
MD5

b72550ee927b52adaa82d100efeb85b3
SHA1

dc471dd88e35d45b2ef58fe8686318149db301d1
SHA256

a087ecf7a395ff1d177eb1111723cbe35ac6060cde0284965b1a2376b4163c8f
SHA512

804d89c451c3bf2bb56fc7e1536e14a55bf46a019348548a298925b600fe83c979ad702f30164a80b19c0d0be79cc08a545c9bf3f44fdc271da27fdc578e30f8
SSDEEP

1536:ZJmN7SH61vO1ndUPMx99ZHLb4kIuQGjiQR:ZJu7SH65edUPMx99hLckIuQa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b72550ee927b52adaa82d100efeb85b3_JaffaCakes118

Files

b72550ee927b52adaa82d100efeb85b3_JaffaCakes118
.exe windows:1 windows x86 arch:x86

17d772a0b6c6fd5bfb204547ef35eda6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
InterlockedDecrement
CreateFileW
HeapReAlloc
Sleep
Sleep
HeapDestroy
WaitForSingleObject
GetLastError
MultiByteToWideChar
HeapDestroy
GetTickCount
VirtualFree
VirtualFree
CreateThread
ReadFile
lstrcmpiW
GetModuleFileNameA
WaitForSingleObject
InterlockedIncrement
VirtualFree
DeleteCriticalSection
ExitProcess
WideCharToMultiByte
SetFilePointer

Sections

.data
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

17d772a0b6c6fd5bfb204547ef35eda6

Headers

File Characteristics

Imports

kernel32

Sections

.data Size: 102KB - Virtual size: 120KB

.data Size: 1024B - Virtual size: 4KB

.data Size: 1KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 4KB

.data
Size: 102KB - Virtual size: 120KB

.data
Size: 1024B - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 4KB