b9a3f1a7ff16d7aa0be3efbca353f266_JaffaCakes118

General

Target

b9a3f1a7ff16d7aa0be3efbca353f266_JaffaCakes118
Size

299KB
MD5

b9a3f1a7ff16d7aa0be3efbca353f266
SHA1

3ba96ae007d8f769a606c092eaa8d3914c67c6fd
SHA256

463058e993f32ee7ddb7c1bf46f7bab3abe89012eaaef68e0093bdf32d520680
SHA512

fa721845ff6b73bfbe06a51c2e6fcb53d6865210a3db22fb43006215b31c9ec064156b071dba269bd8bdcda7ecc5c5bc6c0c1bd7d1eabae32bac018a76e06171
SSDEEP

6144:iuycr2GIq5gheNoVH0ARt2V1FhZ5W1l2lChthSBZdWB34PNOkjjjjjjjjjjfjjj6:iuyNhtW8K83tUSdT05W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9a3f1a7ff16d7aa0be3efbca353f266_JaffaCakes118

Files

b9a3f1a7ff16d7aa0be3efbca353f266_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f15e078006d48cff6a0597fb52d57cd5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AddAtomA
ExitProcess
FindAtomA
LoadLibraryA
GetProcAddress
SetUnhandledExceptionFilter

msvcrt

_access
_chmod
_close
_fdopen
_fstat
_getcwd
_getpid
_isatty
_mktemp
_open
_read
_stat
_strdup
_umask
_unlink
_utime
__getmainargs
__mb_cur_max
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_errno
_filbuf
_flsbuf
_iob
_isctype
_onexit
_pctype
_setmode
_stricmp
_strnicmp
_vsnprintf
abort
atexit
atoi
bsearch
calloc
clearerr
ctime
exit
fclose
fflush
fgets
fopen
fprintf
fputc
fputs
fread
free
fseek
ftell
fwrite
getenv
malloc
memchr
memcpy
memset
perror
printf
putchar
puts
qsort
realloc
remove
rename
setlocale
signal
sprintf
strcat
strchr
strcmp
strcpy
strerror
strlen
strncat
strncpy
strrchr
strstr
strtok
strtol
strtoul
time
tolower
vfprintf

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 10KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f15e078006d48cff6a0597fb52d57cd5

Headers

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: 144KB - Virtual size: 143KB

.data Size: 1024B - Virtual size: 528B

.rdata Size: 56KB - Virtual size: 56KB

.bss Size: - Virtual size: 10KB

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 94KB - Virtual size: 94KB

.text
Size: 144KB - Virtual size: 143KB

.data
Size: 1024B - Virtual size: 528B

.rdata
Size: 56KB - Virtual size: 56KB

.bss
Size: - Virtual size: 10KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 94KB - Virtual size: 94KB