c864798e774b654e85ad120906616059_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

c864798e774b654e85ad120906616059_JaffaCakes118
Size

897KB
MD5

c864798e774b654e85ad120906616059
SHA1

5a436dabd76ac00e9ca5326bc53c70792ef6bf80
SHA256

bbb22991314089d6c74c291a6d761337901e8c2ccde8e59cf583b8cbad441a38
SHA512

9fd3b445ae83f702bac82063fc99b172e331c5234db5da217caead597ac73d99fcbb58bc987819719ad0f654bbd053786d7199fb747522150f69ee6a6e27f8ab
SSDEEP

24576:2QTmcjdltUibSrj7FwOJ/EkE8laHp8BxxJaeVN8t+Ll:qQltFb86ENlasWeVN8t+x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c864798e774b654e85ad120906616059_JaffaCakes118

Files

c864798e774b654e85ad120906616059_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: - Virtual size: 852KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 24KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

baotmnkz
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dl.ra1zf
Size: - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1pka7b14
Size: - Virtual size: 396KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

76arh96x
Size: 888KB - Virtual size: 892KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

galhl1eu
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f433e7fcc51e68080022754836705744

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: - Virtual size: 852KB

.itext Size: - Virtual size: 8KB

.data Size: - Virtual size: 104KB

.bss Size: - Virtual size: 24KB

.idata Size: - Virtual size: 16KB

baotmnkz Size: - Virtual size: 4KB

.tls Size: - Virtual size: 4KB

.rdata Size: - Virtual size: 4KB

dl.ra1zf Size: - Virtual size: 60KB

.rsrc Size: 7KB - Virtual size: 100KB

1pka7b14 Size: - Virtual size: 396KB

76arh96x Size: 888KB - Virtual size: 892KB

galhl1eu Size: 512B - Virtual size: 4KB

.text
Size: - Virtual size: 852KB

.itext
Size: - Virtual size: 8KB

.data
Size: - Virtual size: 104KB

.bss
Size: - Virtual size: 24KB

.idata
Size: - Virtual size: 16KB

baotmnkz
Size: - Virtual size: 4KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: - Virtual size: 4KB

dl.ra1zf
Size: - Virtual size: 60KB

.rsrc
Size: 7KB - Virtual size: 100KB

1pka7b14
Size: - Virtual size: 396KB

76arh96x
Size: 888KB - Virtual size: 892KB

galhl1eu
Size: 512B - Virtual size: 4KB