e0ba653273beb72d6dd3d8c9e810e9e7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e0ba653273beb72d6dd3d8c9e810e9e7_JaffaCakes118
Size

343KB
MD5

e0ba653273beb72d6dd3d8c9e810e9e7
SHA1

98d25da32219967d41adb4fb5104bdc7a8cdf3ce
SHA256

6402cd6ca1d84876e357b0faf16c806ab65f0c5e199cf2dc5c798ceebd3d1830
SHA512

4efbd4838c8b64016d23a5f4151719b7dff90658f0b0ecebba36fb89ec95fd252604facb101dd26ebada6ddbed3bd586dd5648c413da3ee5d205a65d2b6103e5
SSDEEP

6144:f5olBOF68WWFKtDtVP8HBbBFDi2kqGHeE0OIpGC+pdT/KRGb8aG2YG30GSsl:holx8WhJaHB1F3GHF0O0GCMdT/5vYG3j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e0ba653273beb72d6dd3d8c9e810e9e7_JaffaCakes118

Files

e0ba653273beb72d6dd3d8c9e810e9e7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

98b40e8043fcec64f9c55f8062b50d08

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

MessageBoxA
MessageBoxA

Sections

.text
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zero
Size: - Virtual size: 176KB

.as_0001
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zero
Size: - Virtual size: 112KB

.as_0002
Size: - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zero
Size: - Virtual size: 12KB

.as_0003
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

.vmp1
Size: 317KB - Virtual size: 316KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

98b40e8043fcec64f9c55f8062b50d08

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: - Virtual size: 64KB

.data Size: - Virtual size: 8KB

Size: - Virtual size: 20KB

.rsrc Size: 25KB - Virtual size: 236KB

.idata Size: - Virtual size: 4KB

.zero Size: - Virtual size: 176KB

.as_0001 Size: - Virtual size: 16KB

.zero Size: - Virtual size: 112KB

.as_0002 Size: - Virtual size: 116KB

.zero Size: - Virtual size: 12KB

.as_0003 Size: - Virtual size: 16KB

.vmp0 Size: - Virtual size: 31KB

.vmp1 Size: 317KB - Virtual size: 316KB

.text
Size: - Virtual size: 64KB

.data
Size: - Virtual size: 8KB

.rsrc
Size: 25KB - Virtual size: 236KB

.idata
Size: - Virtual size: 4KB

.zero
Size: - Virtual size: 176KB

.as_0001
Size: - Virtual size: 16KB

.zero
Size: - Virtual size: 112KB

.as_0002
Size: - Virtual size: 116KB

.zero
Size: - Virtual size: 12KB

.as_0003
Size: - Virtual size: 16KB

.vmp0
Size: - Virtual size: 31KB

.vmp1
Size: 317KB - Virtual size: 316KB