d71b6ef3338160770891f47676280a8b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d71b6ef3338160770891f47676280a8b_JaffaCakes118
Size

102KB
MD5

d71b6ef3338160770891f47676280a8b
SHA1

fc20e75ef967a3f40ff9be5951903d3b79c3fba5
SHA256

aaec8f3816aec0547819ce6a581088f29c6146d950dae5a8d551a112288875ad
SHA512

c20a9b54b59a0330e60d95c2aeb1e51c12c92a1eeb32c5c3410b1e4ecf6ff99a4d7a8f47d811518cac6fac84f12cc89c2f5f33f13cba7eef6d1e07edc75d832a
SSDEEP

768:0/el+9dc8SAN7zACfKRkK5XlQgmn19uBnU45dDFqucScWQmY/:Gel2aK3cXlQJn19cnU45V/d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d71b6ef3338160770891f47676280a8b_JaffaCakes118

Files

d71b6ef3338160770891f47676280a8b_JaffaCakes118
.exe windows:1 windows x86 arch:x86

e2d183487e9f3ae9951ade5375b70e12

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
GetModuleFileNameA
GetVersionExA
GetVersionExA
GetSystemTimeAsFileTime
LeaveCriticalSection
QueryPerformanceCounter
GetCurrentProcess
GetCommandLineW
GetVersionExA
WideCharToMultiByte
Sleep
GetVersionExA
VirtualAlloc
GetACP
GetCurrentProcessId
GetModuleFileNameA
InterlockedDecrement
CreateThread
lstrlenW
FreeLibrary
GetProcessHeap
WriteFile
GetSystemTimeAsFileTime
GetACP

Sections

.pfqh
Size: 87KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odfn
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gvyt
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kbku
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.putv
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vqyy
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ysjq
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mcyr
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aypb
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e2d183487e9f3ae9951ade5375b70e12

Headers

File Characteristics

Imports

kernel32

Sections

.pfqh Size: 87KB - Virtual size: 104KB

.odfn Size: 1024B - Virtual size: 4KB

.gvyt Size: 512B - Virtual size: 4KB

.kbku Size: 512B - Virtual size: 4KB

.putv Size: 1024B - Virtual size: 4KB

.vqyy Size: 512B - Virtual size: 4KB

.ysjq Size: 6KB - Virtual size: 5KB

.rsrc Size: 512B - Virtual size: 28B

.mcyr Size: 1024B - Virtual size: 4KB

.aypb Size: 1024B - Virtual size: 4KB

.pfqh
Size: 87KB - Virtual size: 104KB

.odfn
Size: 1024B - Virtual size: 4KB

.gvyt
Size: 512B - Virtual size: 4KB

.kbku
Size: 512B - Virtual size: 4KB

.putv
Size: 1024B - Virtual size: 4KB

.vqyy
Size: 512B - Virtual size: 4KB

.ysjq
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 512B - Virtual size: 28B

.mcyr
Size: 1024B - Virtual size: 4KB

.aypb
Size: 1024B - Virtual size: 4KB