e86bbb1a37b08d130ebac9e847de770f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

e86bbb1a37b08d130ebac9e847de770f_JaffaCakes118
Size

152KB
MD5

e86bbb1a37b08d130ebac9e847de770f
SHA1

eb1e1f3e5a11ea00f89bdf2bbfeb1a02baac6216
SHA256

0e09a3e2295d9bb4ec59482b0e76b0a9aa6c46343bbe38ff81bfc9d8a0688cdb
SHA512

92abd1b84c585d2b1c07a09a4f0c829e3d32b8c717bda06ff71e5b54c004dc19eb514fa5b3019bfa4c553d676f797d9a1f13e30cb720400eee3a855bd044654f
SSDEEP

3072:8aNsNiEeto38TztwCyJP6b52Y98ZF+fU84n12ZJ:8aNsKK3iztwCiGgY98uf1Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e86bbb1a37b08d130ebac9e847de770f_JaffaCakes118

Files

e86bbb1a37b08d130ebac9e847de770f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8883ae60382437292aef676ab9475493

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

netapi32

NetUserGetInfo

kernel32

GetPriorityClass
GetEnvironmentStrings
GetModuleHandleW
FlushProcessWriteBuffers
GetNamedPipeClientProcessId
GetNamedPipeClientComputerNameW
SetThreadPriority

msi

ord29

crypt32

CertEnumCTLsInStore

gdi32

RectInRegion
GetColorAdjustment

user32

ShutdownBlockReasonDestroy

advapi32

AccessCheckAndAuditAlarmW

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 4KB - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.code
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt0
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VRix7QXv
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

z*5j9
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 912B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8883ae60382437292aef676ab9475493

Headers

DLL Characteristics

File Characteristics

Imports

netapi32

kernel32

msi

crypt32

gdi32

user32

advapi32

Sections

.text Size: 32KB - Virtual size: 30KB

.data Size: 8KB - Virtual size: 12KB

.text Size: 4KB - Virtual size: 724B

.code Size: 16KB - Virtual size: 14KB

.crt0 Size: 36KB - Virtual size: 35KB

VRix7QXv Size: 32KB - Virtual size: 30KB

z*5j9 Size: 16KB - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 912B

.text
Size: 32KB - Virtual size: 30KB

.data
Size: 8KB - Virtual size: 12KB

.text
Size: 4KB - Virtual size: 724B

.code
Size: 16KB - Virtual size: 14KB

.crt0
Size: 36KB - Virtual size: 35KB

VRix7QXv
Size: 32KB - Virtual size: 30KB

z*5j9
Size: 16KB - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 912B