bba89828329c571c221e4fe65e9940df_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bba89828329c571c221e4fe65e9940df_JaffaCakes118
Size

808KB
MD5

bba89828329c571c221e4fe65e9940df
SHA1

9688a25fcb6304697f1cc1c46ed029501f6f510f
SHA256

666c796eb8ded31d66cb1eb8b91e8d88d16b27590eabc81755d6a19527da8582
SHA512

619c7eff2bc6cafedea43eb4609736a4d94904bbd240fac7afaf4fc31550edfed5d411c298d4ad7f547c4c8c17a2ddf0c0495d087ec75a81a7fd183aeb4fad7d
SSDEEP

12288:t6H6k/AexsplsukPI9zl8G7DPgDKhOH/rJDS2JQcopaVLSSP6mCCzT:t6ak/PxsplsIl4+2JOcoqbC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bba89828329c571c221e4fe65e9940df_JaffaCakes118

Files

bba89828329c571c221e4fe65e9940df_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8c8cd69c3d8da944bc020f2832a7ec2e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
ReadConsoleA
GetCommandLineA
GetConsoleMode
CopyFileExW
GetComputerNameA
FindFirstFileA
CreateThread
DeleteFileA
GlobalFree
DeleteAtom
GetCPInfo
CopyFileExA
GetLastError
ExitThread
FindAtomA
OpenFileMappingA
DeleteFileW
GetCPInfo
OpenFileMappingA
CopyFileW
GetLastError
WriteFile
GetStdHandle
CreateDirectoryA
OpenFile
ExitThread
FindFirstFileA
CopyFileExA
GetComputerNameA
GetComputerNameA
CreateProcessA
CopyFileExA
GetConsoleMode
CreateThread
OpenFile
OpenFileMappingA
DeleteFileW
GetCPInfo
FindAtomA
ReadFile
GetStdHandle
Sleep
ReadConsoleA
CopyFileA
GetCommandLineA
CopyFileW
GetCommandLineA
CreateDirectoryA
GetComputerNameA
FindFirstFileA
SetLastError
GetLastError
OpenFileMappingA
DeleteAtom
ReadFile
DeleteFileA
GetStdHandle
CreateThread
GlobalFree
WriteFile
GetConsoleMode
GetCPInfo
CopyFileExW

Sections

CODE
Size: 712KB - Virtual size: 711KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.relOc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

edata
Size: 24KB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BSs
Size: 4KB - Virtual size: 185B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c8cd69c3d8da944bc020f2832a7ec2e

Headers

File Characteristics

Imports

kernel32

Sections

CODE Size: 712KB - Virtual size: 711KB

.itext Size: 8KB - Virtual size: 5KB

.relOc Size: 8KB - Virtual size: 4KB

edata Size: 24KB - Virtual size: 3.3MB

.BSs Size: 4KB - Virtual size: 185B

.rdata Size: 4KB - Virtual size: 2KB

.idata Size: 4KB - Virtual size: 1KB

.rsrc Size: 40KB - Virtual size: 36KB

CODE
Size: 712KB - Virtual size: 711KB

.itext
Size: 8KB - Virtual size: 5KB

.relOc
Size: 8KB - Virtual size: 4KB

edata
Size: 24KB - Virtual size: 3.3MB

.BSs
Size: 4KB - Virtual size: 185B

.rdata
Size: 4KB - Virtual size: 2KB

.idata
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 40KB - Virtual size: 36KB