c92f60e586e774e0d4e672e1321c9b56_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c92f60e586e774e0d4e672e1321c9b56_JaffaCakes118
Size

68KB
MD5

c92f60e586e774e0d4e672e1321c9b56
SHA1

f0fc916aadf28dda01c2420472cdfef4524b42f4
SHA256

670f78c9a8c84266ba0278fe4a61e5124485cc216fabe453e60d46a407d8bcde
SHA512

e7cbaefce17fc4b9e9ef8ae8edc9d9ce0dd84ac9b93e9644dad3745e0d0803aea887d892760fc895924da486ddea6c1179fc006158ef6f098788bb1369946af8
SSDEEP

768:BvzMfZ6K/l1oOR8k1ZPZFX9ZJlOrse6w:B7wLlmOXZbXTzR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c92f60e586e774e0d4e672e1321c9b56_JaffaCakes118

Files

c92f60e586e774e0d4e672e1321c9b56_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9b7a43a087508c23068e9d3b34fd3b41

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetStartupInfoA
GetProcAddress
LoadLibraryA
GetProcessHeap
VirtualAlloc

advapi32

RegOpenKeyA
RegCloseKey

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xet1
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xet5
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xet2
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xet7
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xet3
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xet4
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xet6
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 456B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9b7a43a087508c23068e9d3b34fd3b41

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 37KB - Virtual size: 37KB

.data Size: 512B - Virtual size: 216B

.xet1 Size: 4KB - Virtual size: 3KB

.xet5 Size: 4KB - Virtual size: 3KB

.xet2 Size: 4KB - Virtual size: 3KB

.xet7 Size: 4KB - Virtual size: 3KB

.xet3 Size: 4KB - Virtual size: 3KB

.xet4 Size: 4KB - Virtual size: 3KB

.xet6 Size: 4KB - Virtual size: 3KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 512B - Virtual size: 456B

.text
Size: 37KB - Virtual size: 37KB

.data
Size: 512B - Virtual size: 216B

.xet1
Size: 4KB - Virtual size: 3KB

.xet5
Size: 4KB - Virtual size: 3KB

.xet2
Size: 4KB - Virtual size: 3KB

.xet7
Size: 4KB - Virtual size: 3KB

.xet3
Size: 4KB - Virtual size: 3KB

.xet4
Size: 4KB - Virtual size: 3KB

.xet6
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 512B - Virtual size: 456B