ebd17abc3b1c5cd8b27e49b894490b68_JaffaCakes118

General

Target

ebd17abc3b1c5cd8b27e49b894490b68_JaffaCakes118
Size

2.8MB
MD5

ebd17abc3b1c5cd8b27e49b894490b68
SHA1

6a059603ce8e46d12cf7491fa43368a5324c2fad
SHA256

898da7b741b5722dca9fac345ce5139915c4bb71fc20f42febba8f4aa258fedb
SHA512

9521f2a8bd7d3e5ea5dd47f10040cf23a2b88b3f289ff780fa1ea3dc5458ecda81dd3b2aacb5f483e375e2502de47e294e14dc952a71172a5c3abc8bcd4b9608
SSDEEP

49152:H4HNZ4u9l6K9Qin/psSMQNfvuIHlY+rqN2hmW6N8oynk6vWz2Q:YHvl6U/SSMIf2GlY+mN2hYKoE5vXQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ebd17abc3b1c5cd8b27e49b894490b68_JaffaCakes118

Files

ebd17abc3b1c5cd8b27e49b894490b68_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a7333743ef063a68d1d860bbdf1c328e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
VirtualAlloc

Sections

.rloc
Size: 370KB - Virtual size: 852KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rloc
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rloc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rloc
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rloc
Size: - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.4MB - Virtual size: 5.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rloc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a7333743ef063a68d1d860bbdf1c328e

Headers

File Characteristics

Imports

kernel32

Sections

.rloc Size: 370KB - Virtual size: 852KB

.rloc Size: 5KB - Virtual size: 12KB

.rloc Size: - Virtual size: 8KB

.rloc Size: 3KB - Virtual size: 16KB

.rloc Size: - Virtual size: 60KB

.rsrc Size: 2.4MB - Virtual size: 5.5MB

.rloc Size: 40KB - Virtual size: 40KB

.rloc
Size: 370KB - Virtual size: 852KB

.rloc
Size: 5KB - Virtual size: 12KB

.rloc
Size: - Virtual size: 8KB

.rloc
Size: 3KB - Virtual size: 16KB

.rloc
Size: - Virtual size: 60KB

.rsrc
Size: 2.4MB - Virtual size: 5.5MB

.rloc
Size: 40KB - Virtual size: 40KB