be85d0f70320a9c2cd08ddfdfb9145e0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

be85d0f70320a9c2cd08ddfdfb9145e0_JaffaCakes118
Size

81KB
MD5

be85d0f70320a9c2cd08ddfdfb9145e0
SHA1

48bc27429dc49747a9ba1d0a4cbf78741f5f40db
SHA256

49125899215823b50194581db799d7e49e7fe761fd2ef5438b4b114267a4b0b6
SHA512

89b38f960771d27c5f6c30bdc38776e7bc2aaf8c9c3fe361f802e5735fa666c5e5abbbbee653ba16122c1744e567c20a2358ad4aaf40fe833bc85d819d6ad64f
SSDEEP

1536:B3TYkG3Je/R21wYWfYuc5efHqe9KWuhjb7Kpn+DGjdPX6hnvAPvp/Y:tYkG3JMpDfYfeCecWuhjb78cw16SlY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be85d0f70320a9c2cd08ddfdfb9145e0_JaffaCakes118

Files

be85d0f70320a9c2cd08ddfdfb9145e0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: - Virtual size: 392KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

th63eu37
Size: - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vs1nz3a5
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ry1.350w
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6r5r9c5v
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0dl87rii
Size: 276KB - Virtual size: 280KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xqemgc4c
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f433e7fcc51e68080022754836705744

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: - Virtual size: 392KB

th63eu37 Size: - Virtual size: 88KB

.data Size: - Virtual size: 36KB

.rsrc Size: 512B - Virtual size: 4KB

vs1nz3a5 Size: - Virtual size: 32KB

ry1.350w Size: - Virtual size: 4KB

6r5r9c5v Size: - Virtual size: 24KB

0dl87rii Size: 276KB - Virtual size: 280KB

xqemgc4c Size: 512B - Virtual size: 4KB

.text
Size: - Virtual size: 392KB

th63eu37
Size: - Virtual size: 88KB

.data
Size: - Virtual size: 36KB

.rsrc
Size: 512B - Virtual size: 4KB

vs1nz3a5
Size: - Virtual size: 32KB

ry1.350w
Size: - Virtual size: 4KB

6r5r9c5v
Size: - Virtual size: 24KB

0dl87rii
Size: 276KB - Virtual size: 280KB

xqemgc4c
Size: 512B - Virtual size: 4KB