bff68b0cf93ce779b20f9658f71be928_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bff68b0cf93ce779b20f9658f71be928_JaffaCakes118
Size

172KB
MD5

bff68b0cf93ce779b20f9658f71be928
SHA1

eb1fdeffc424e02849a6733460ac383ddd4b3a36
SHA256

56adf9a2edb167774e8ee3245b8b84aa6929ba324a96dc715c9c3cc7f5b08b1b
SHA512

82f4d6135c6ac32ddd9b3fd78e82ebc8070f9156f7cb7026e2f7893758d9fdb701954541925a2af1c6b2914c36e36322ce0609e50f185fa666f668d548ba190c
SSDEEP

3072:mFP3xeHT142Mmr7qwq2F1Zud79dyy4+LcSAWdQY0EAEqc26DUkCT2x8NCWY86bIQ:03xeHR4Evq2tuzdLlgKZ00NvQXTC7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bff68b0cf93ce779b20f9658f71be928_JaffaCakes118

Files

bff68b0cf93ce779b20f9658f71be928_JaffaCakes118
.exe windows:6 windows x86 arch:x86

7916dbb4d834be3e7411141e7dc0e08e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowContextHelpId
IsHungAppWindow
GetRawInputDeviceList
KillTimer
GetWindow
GetMenuDefaultItem
GetMenuState

kernel32

QueryProcessCycleTime
CreateSemaphoreW
GetCommandLineW
GetConsoleFontSize
GetCurrentActCtx
GetSystemDefaultUILanguage
GetTickCount64
FindNextFileNameW
GetThreadPriority
GetTimeZoneInformation

advapi32

IsWellKnownSid
SetKernelObjectSecurity

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 4KB - Virtual size: 490B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7916dbb4d834be3e7411141e7dc0e08e

Headers

File Characteristics

Imports

user32

kernel32

advapi32

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 9KB

DATA Size: 4KB - Virtual size: 490B

.code Size: 24KB - Virtual size: 20KB

.crt Size: 76KB - Virtual size: 75KB

CODE Size: 8KB - Virtual size: 4KB

.rsrc Size: 32KB - Virtual size: 30KB

.reloc Size: 4KB - Virtual size: 852B

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 9KB

DATA
Size: 4KB - Virtual size: 490B

.code
Size: 24KB - Virtual size: 20KB

.crt
Size: 76KB - Virtual size: 75KB

CODE
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 32KB - Virtual size: 30KB

.reloc
Size: 4KB - Virtual size: 852B