bceabfa99f4e2ea5f2d32d40f9dc58c9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bceabfa99f4e2ea5f2d32d40f9dc58c9_JaffaCakes118
Size

3.6MB
MD5

bceabfa99f4e2ea5f2d32d40f9dc58c9
SHA1

9e3731c43e5349f273bef85a293cda1af09a3b08
SHA256

743d1ae7edbf4c4c463c63bde9c60fb9716d94995145051a6ca4dc7b9b08dc28
SHA512

14d864fe18d8b7140d074d5ab7daaa0e982b09722e76b6fcf32c302b8a81e95612e4a2d36f62bff2c09db08c659698bc79365684edb82708db6b0e8ba668c272
SSDEEP

98304:Shuf3WNxCzpV9MGXJsH543WPAAp94c5qPrqhfepdM:SYfHVV9NzWoaT5qPrqT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bceabfa99f4e2ea5f2d32d40f9dc58c9_JaffaCakes118

Files

bceabfa99f4e2ea5f2d32d40f9dc58c9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

916f821fffb614f4dab6370e160b03f5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcatW
SetUnhandledExceptionFilter
GetModuleHandleA
GetCurrentProcess
TerminateProcess
FlushViewOfFile
GetProcAddress
UnhandledExceptionFilter
RtlUnwind
VirtualQuery
IsDebuggerPresent

user32

EnableScrollBar
ValidateRgn

Sections

l
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

7
Size: 2KB - Virtual size: 1007B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

S
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

S
Size: 2KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

S
Size: 2KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

mYe
Size: 224KB - Virtual size: 224KB

IMAGE_SCN_MEM_READ

Na6
Size: 224KB - Virtual size: 224KB

IMAGE_SCN_MEM_READ

VFO
Size: 320KB - Virtual size: 320KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

916f821fffb614f4dab6370e160b03f5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

l Size: 4KB - Virtual size: 3KB

7 Size: 2KB - Virtual size: 1007B

S Size: 2KB - Virtual size: 1KB

.tls Size: 120KB - Virtual size: 118KB

S Size: 2KB - Virtual size: 8B

.RSRC Size: 1.8MB - Virtual size: 1.8MB

S Size: 2KB - Virtual size: 1.6MB

mYe Size: 224KB - Virtual size: 224KB

Na6 Size: 224KB - Virtual size: 224KB

VFO Size: 320KB - Virtual size: 320KB

l
Size: 4KB - Virtual size: 3KB

7
Size: 2KB - Virtual size: 1007B

S
Size: 2KB - Virtual size: 1KB

.tls
Size: 120KB - Virtual size: 118KB

S
Size: 2KB - Virtual size: 8B

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

S
Size: 2KB - Virtual size: 1.6MB

mYe
Size: 224KB - Virtual size: 224KB

Na6
Size: 224KB - Virtual size: 224KB

VFO
Size: 320KB - Virtual size: 320KB