befcdc329c9c7a0825188ada6c234ac3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

befcdc329c9c7a0825188ada6c234ac3_JaffaCakes118
Size

152KB
MD5

befcdc329c9c7a0825188ada6c234ac3
SHA1

50c2e51eb1c80ba517758a834ca82a5717b22349
SHA256

54ee6f3d7057e63f4e4adc8fd1d625f7959e513bc103a45d6eb41ecba1a0900c
SHA512

c1113cf04f920a36fe312f7fdfdc6b6a6b605b9b7e59c0f513ca3a437d58d4db69639c40293c6622141f4de00f9d9179496e14753b9b76f02dbe797c5554a95b
SSDEEP

3072:cyarBQ1ypGTJkT41lOM9XeMycEVOLvf7K8z:parSykTS0nXeLcEVOzu8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
befcdc329c9c7a0825188ada6c234ac3_JaffaCakes118

Files

befcdc329c9c7a0825188ada6c234ac3_JaffaCakes118
.exe windows:6 windows x86 arch:x86

547b46a5576ad9056c63746af1367b78

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

FrameRgn
GetROP2

pdh

PdhGetCounterTimeBase

kernel32

GetCurrentProcessId
SetThreadPriority
RegisterApplicationRestart
Heap32ListFirst
GetQueuedCompletionStatus
GetWindowsDirectoryW
CloseHandle
GetConsoleProcessList
GetTickCount
GetVersionExA
GetDynamicTimeZoneInformation

user32

IsCharAlphaNumericW
GetWindowContextHelpId
LockWindowUpdate
TrackPopupMenuEx
GetWindowWord
GetDesktopWindow
IsWindow
GetFocus

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 39B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 511B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CONST
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TFgg
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MmtxxaB
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

547b46a5576ad9056c63746af1367b78

Headers

File Characteristics

Imports

gdi32

pdh

kernel32

user32

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 6KB

.crt Size: 4KB - Virtual size: 39B

.crt Size: 4KB - Virtual size: 511B

CONST Size: 32KB - Virtual size: 28KB

.crt Size: 32KB - Virtual size: 28KB

TFgg Size: 32KB - Virtual size: 28KB

MmtxxaB Size: 16KB - Virtual size: 14KB

.rsrc Size: 4KB - Virtual size: 720B

.reloc Size: 4KB - Virtual size: 208B

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 6KB

.crt
Size: 4KB - Virtual size: 39B

.crt
Size: 4KB - Virtual size: 511B

CONST
Size: 32KB - Virtual size: 28KB

.crt
Size: 32KB - Virtual size: 28KB

TFgg
Size: 32KB - Virtual size: 28KB

MmtxxaB
Size: 16KB - Virtual size: 14KB

.rsrc
Size: 4KB - Virtual size: 720B

.reloc
Size: 4KB - Virtual size: 208B