d38d38f166681a902882d088aaa73bac_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d38d38f166681a902882d088aaa73bac_JaffaCakes118
Size

124KB
MD5

d38d38f166681a902882d088aaa73bac
SHA1

02324909d5188b74983368121d0b3ca449115e87
SHA256

c989f54c61860a225ac7aaafbaac4a350a2435163e7c194fe79ac5da3037faec
SHA512

c2948ed0e88e331497160589545f386e7ed1245e87258d394fc41f581d4e9c7c9b825a22d6c3cf590f1215e782e6597cc006f05a6d6cc357127d60018d9f5389
SSDEEP

768:57Pq7HFszU7YSRQARJdxrlPc9uwVWCRmwhb/fnX0lP9GpUGzcIcUOk29FWGTDA6I:BPq7HFswdxrlPc9vwobGPO7ug0G+Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d38d38f166681a902882d088aaa73bac_JaffaCakes118

Files

d38d38f166681a902882d088aaa73bac_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f64594bfe8e5b0d6d617072660851b03

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

D_CFE67AC5
L_35E19F71
E_6615EF0D
I_8C240BB7
V_22A0CA23
V_5B2F136F
L_47807F1C
L_67D5AC47
G_C9187027
G_A643D125
G_F580047F
G_A3E4992D
F_07CD7952
E_3386FEAD
W_DE9A6133
U_0DF0CACE
R_0D0E05B5
R_CEF3085C
G_41672252
G_B1BFDDD2
T_6C3AAE6D
T_71C9B1E2
L_67D5AC47
G_F8A997E4
W_1EE5107B
S_7521D013
G_14D8C
G_DFE6726A
E_E1D905F7
D_434946E6
C_F49F59F6
C_663266EF

user32

G_7DEF4A01
M_172A2D8A
C_3019D9D6
T_BE13622A
P_28B7BAFF
D_1B9DB5E5

advapi32

R_10256CF4
R_C2585CE3
R_ACEF6D65
R_66452F0B
R_C2585CE3
R_ACEF6D65

oleaut32

S_04A2C4EB

urlmon

U_51D0FC1E

wsock32

W_3476CC17
W_C630A0F5
g_D3F8567F
g_B6B5FD9D
g_7A71DF7E
g_D5ABA88C
s_4479A1AF
s_235CC885
s_F351D04B
r_25DA726A
n_13BB12CD
i_2BC78FF8
i_18757FCA
h_719EB35
c_0E6003B8
c_888293A5

Sections

.ironix
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ironix
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ironix
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ironix
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ironix
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ironix
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avp
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f64594bfe8e5b0d6d617072660851b03

Headers

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

urlmon

wsock32

Sections

.ironix Size: 20KB - Virtual size: 20KB

.ironix Size: 4KB - Virtual size: 4KB

.ironix Size: 36KB - Virtual size: 36KB

.ironix Size: 8KB - Virtual size: 8KB

.ironix Size: 8KB - Virtual size: 8KB

.rsrc Size: 4KB - Virtual size: 4KB

.ironix Size: 28KB - Virtual size: 28KB

.avp Size: 12KB - Virtual size: 12KB

.ironix
Size: 20KB - Virtual size: 20KB

.ironix
Size: 4KB - Virtual size: 4KB

.ironix
Size: 36KB - Virtual size: 36KB

.ironix
Size: 8KB - Virtual size: 8KB

.ironix
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 4KB - Virtual size: 4KB

.ironix
Size: 28KB - Virtual size: 28KB

.avp
Size: 12KB - Virtual size: 12KB