f33cdae0ae562cb6ba8909925f06064c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f33cdae0ae562cb6ba8909925f06064c_JaffaCakes118
Size

152KB
MD5

f33cdae0ae562cb6ba8909925f06064c
SHA1

5a9718e2050b803aeb47ef0dc025983d8c40acad
SHA256

7d1bac0361b9088beb7439391b3ccbe6264581c86f8b53d14ef3c732fae39c50
SHA512

67b87c97580a8e5ffd56f9548d00e94b2e2d9fb8eb55889520f921ff9cecdfa57a8ba27270aa2bdcd6731e64b774c5a5206ce226b2b9e14fdc9808e235d935a5
SSDEEP

3072:Ql2y8sf5WBmz8X/iSJ7Ws730xYvG1sFs9X:Xy9f4H/ivsb0xkT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f33cdae0ae562cb6ba8909925f06064c_JaffaCakes118

Files

f33cdae0ae562cb6ba8909925f06064c_JaffaCakes118
.exe windows:6 windows x86 arch:x86

e0408cf488634b1dd73a24f38911cc0f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

IsTokenRestricted
OpenProcessToken

kernel32

SetTimeZoneInformation
GetSystemDefaultUILanguage
GetTickCount64
DeleteTimerQueueTimer
GetCommMask
GetCurrentThread
GetThreadTimes
GlobalMemoryStatusEx
GetCommandLineW
CancelSynchronousIo
CreateMutexW
DuplicateHandle

user32

GetMenuDefaultItem
GetWindow
CheckMenuItem
SetProcessDefaultLayout
IsChild
TranslateMessage
SetThreadDesktop

winscard

SCardStatusA

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt3
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 4KB - Virtual size: 182B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt1
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.x
Size: 4KB - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e0408cf488634b1dd73a24f38911cc0f

Headers

File Characteristics

Imports

advapi32

kernel32

user32

winscard

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 4KB - Virtual size: 1KB

.crt3 Size: 4KB - Virtual size: 8KB

DATA Size: 4KB - Virtual size: 182B

.code Size: 20KB - Virtual size: 18KB

.crt Size: 52KB - Virtual size: 48KB

CODE Size: 20KB - Virtual size: 17KB

.crt1 Size: 24KB - Virtual size: 20KB

.rsrc Size: 4KB - Virtual size: 1KB

.x Size: 4KB - Virtual size: 372B

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 4KB - Virtual size: 1KB

.crt3
Size: 4KB - Virtual size: 8KB

DATA
Size: 4KB - Virtual size: 182B

.code
Size: 20KB - Virtual size: 18KB

.crt
Size: 52KB - Virtual size: 48KB

CODE
Size: 20KB - Virtual size: 17KB

.crt1
Size: 24KB - Virtual size: 20KB

.rsrc
Size: 4KB - Virtual size: 1KB

.x
Size: 4KB - Virtual size: 372B