dfbb2f241c1cb2d344613487a0cf3b7a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dfbb2f241c1cb2d344613487a0cf3b7a_JaffaCakes118
Size

115KB
MD5

dfbb2f241c1cb2d344613487a0cf3b7a
SHA1

1515ea0db1d29b0224d29dd6f681d9eee53622e7
SHA256

817b3ad175284c9e308ea86e6cae63b605e35aa772e6510c66b7873c49b76d75
SHA512

b6785f2166fc721ade5cdc5778225b44851b4eb24483db989efc7063abe1c5b5186868c9343d6eeadf7d2628a49e9cf05e47e27108e30171796c27bb1dbbacc8
SSDEEP

1536:trhWgf9eUz/BMvkeWPFY7WXJWEmAUBB/js:tr0gf9p2vmP6YUEmAU3/js

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfbb2f241c1cb2d344613487a0cf3b7a_JaffaCakes118

Files

dfbb2f241c1cb2d344613487a0cf3b7a_JaffaCakes118
.exe windows:1 windows x86 arch:x86

d8deff1db3f0164d8cf7ba1dbd366fcf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoW
GetProcessHeap
VirtualAlloc
GetCommandLineW
GetStartupInfoW
GetCommandLineW
GetVersionExA
LoadLibraryW
GetSystemTimeAsFileTime
SetLastError
lstrcmpiW
GetProcessHeap
InitializeCriticalSection
CreateThread
CreateFileW
GetLastError
UnhandledExceptionFilter
GetStartupInfoA
InterlockedIncrement
SetLastError
lstrcmpiW
GetModuleHandleA
ExitProcess
GetCommandLineA
VirtualFree

Sections

.xhtp
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.efnu
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bdgt
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.enkt
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.intr
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.oncd
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kuab
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xela
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qigs
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d8deff1db3f0164d8cf7ba1dbd366fcf

Headers

File Characteristics

Imports

kernel32

Sections

.xhtp Size: 102KB - Virtual size: 120KB

.efnu Size: 1024B - Virtual size: 4KB

.bdgt Size: 1KB - Virtual size: 4KB

.enkt Size: 1024B - Virtual size: 4KB

.intr Size: 512B - Virtual size: 4KB

.oncd Size: 512B - Virtual size: 4KB

.kuab Size: 512B - Virtual size: 4KB

.xela Size: 5KB - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 32B

.qigs Size: 1024B - Virtual size: 4KB

.xhtp
Size: 102KB - Virtual size: 120KB

.efnu
Size: 1024B - Virtual size: 4KB

.bdgt
Size: 1KB - Virtual size: 4KB

.enkt
Size: 1024B - Virtual size: 4KB

.intr
Size: 512B - Virtual size: 4KB

.oncd
Size: 512B - Virtual size: 4KB

.kuab
Size: 512B - Virtual size: 4KB

.xela
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 32B

.qigs
Size: 1024B - Virtual size: 4KB