bb092e3f9a1fe6521da5378811eb9bfa_JaffaCakes118

General

Target

bb092e3f9a1fe6521da5378811eb9bfa_JaffaCakes118
Size

44KB
MD5

bb092e3f9a1fe6521da5378811eb9bfa
SHA1

c84adcf78abeece74d0dbd4e45ad91f3b6f7c1a4
SHA256

393746b08dc5aee2c4e87647e72a443733693b17b1e27dfeb87f3c257f9d078d
SHA512

d35d5f3ae25f7b9a83c1ab49e7b375a6984a6b344efe5c118110b47cebf81066e7bff88b05b6c20219dc6a8cb416d24ef5db48ba6a447621806598348d684ce1
SSDEEP

384:g4n9zzFUM6eDhtYy4aSoMzgx8URIgBy60DRDwDuDJD/EAEVi7c5QkFvmE:g4npRUPghtx4KG+By6O16QN/j+QkFeE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb092e3f9a1fe6521da5378811eb9bfa_JaffaCakes118

Files

bb092e3f9a1fe6521da5378811eb9bfa_JaffaCakes118
.dll windows:4 windows x86 arch:x86

69cd184209052fef91115afc3be8d381

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

FreeLibrary
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetVersion
HeapAlloc
HeapFree
LoadLibraryA

cc3260mt

@_InitTermAndUnexPtrs$qv
__ErrorExit
__ErrorMessage
___CRTL_MEM_UseBorMM
___CRTL_TLS_Alloc
___CRTL_TLS_ExitThread
___CRTL_TLS_Free
___CRTL_TLS_GetValue
___CRTL_TLS_InitThread
___CRTL_TLS_SetValue
__argv_default_expand
__free_heaps
__handle_exitargv
__handle_setargv
__handle_wexitargv
__handle_wsetargv
__startupd
__wargv_default_expand
_memcpy

Exports

Exports

___CPPdebugHook

Sections

.text
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

69cd184209052fef91115afc3be8d381

Headers

File Characteristics

Imports

kernel32

cc3260mt

Exports

Exports

Sections

.text Size: 1024B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

.idata Size: 1024B - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 39KB - Virtual size: 40KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 1024B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

.idata
Size: 1024B - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 39KB - Virtual size: 40KB

.reloc
Size: 512B - Virtual size: 4KB