ce8272d2519581750460055c20307f1b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ce8272d2519581750460055c20307f1b_JaffaCakes118
Size

837KB
MD5

ce8272d2519581750460055c20307f1b
SHA1

bb7e1303a248e3cbdbdbb720257976a9bffc5711
SHA256

9f63ba24bda86c855b2a5a027fe806aab02a085381be611a82fefc403ef70583
SHA512

f3095ef0e0f9f00cb5c5e366314c035dedbefba98d56c37da13582587d83e54fb99857af0917c1cdd4bf09bb027466d7df52482c32f6c5f15e090639bca89882
SSDEEP

12288:VfnJeDgFTKKTiistCOKHCgyK/LBayXQjADZthIEmbNbJ2w9aVN:hPvbstDqISkMQjADZthIEmbNbJu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce8272d2519581750460055c20307f1b_JaffaCakes118

Files

ce8272d2519581750460055c20307f1b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c674f7a1d00b8541d03f00a0f1da2340

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcp71

?_Nomemory@std@@YAXXZ
?open@?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXPBDHH@Z
?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@H@2@XZ
??_D?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
?close@?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_D?$basic_fstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
?close@?$basic_fstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@JH@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBDH@Z
??_D?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?close@?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@JH@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADH@Z

msvcr71

__p__fmode
__set_app_type
_except_handler3
__dllonexit
_onexit
_controlfp
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
_amsg_exit
_acmdln
exit
_cexit
_ismbblead
_XcptFilter
_exit
_c_exit
_callnewh
malloc
strcat
__CxxFrameHandler
??_V@YAXPAX@Z
strlen
strcpy
??3@YAXPAX@Z
__getmainargs
_strcmpi

kernel32

DeleteFileA
SetFileAttributesA
GetCommandLineA
MoveFileA
FindClose
FindNextFileA
CopyFileA
ResumeThread
SuspendThread
CreateThread
Sleep
GetSystemTime
WaitForSingleObject
CreateSemaphoreA
WinExec
GetSystemDirectoryA
GetStartupInfoA
GetModuleHandleA
GetWindowsDirectoryA
FindFirstFileA

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c674f7a1d00b8541d03f00a0f1da2340

Headers

File Characteristics

Imports

msvcp71

msvcr71

kernel32

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 108B

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 108B

.rsrc
Size: 7KB - Virtual size: 7KB