fc7bdb936f58997cb88599be59a0303f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fc7bdb936f58997cb88599be59a0303f_JaffaCakes118
Size

46KB
MD5

fc7bdb936f58997cb88599be59a0303f
SHA1

ff5190bc803f1b1e49358422b15946330a8217bf
SHA256

56fd74f2c69976655b7fcd94ddc49061fb3421b7f73f2e540d7b207d43e73fc9
SHA512

b381bd706b503b38a1a7a70294252a07ed8511dc971bcc9ce6b09eb57c8302f34b27c6c600bbbe951cf6ffcc4b4ae1262881916c73f5b23ecde1ae398c4a6b5c
SSDEEP

384:6swBGsV/42tbBQucT9rsOg3ttpAVL6UR81FP3PKQM2kV1SM5:6rBGB2tCucTtsJdg818f2kN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc7bdb936f58997cb88599be59a0303f_JaffaCakes118

Files

fc7bdb936f58997cb88599be59a0303f_JaffaCakes118
.exe windows:1 windows x86 arch:x86

cb05dc77d1cb86628af3de82e0b4a089

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
InterlockedIncrement
WaitForSingleObject
GetCurrentProcessId
SetFilePointer
GetCurrentProcessId
GetProcessHeap
WriteFile
EnterCriticalSection
EnterCriticalSection
GetCommandLineW
VirtualAlloc
GetVersionExA
GetStartupInfoA
SetLastError
Sleep
QueryPerformanceCounter
DeleteCriticalSection
QueryPerformanceCounter
WaitForSingleObject
DeleteCriticalSection
LoadLibraryW
GetProcAddress
GetStartupInfoW
CreateThread

Sections

.djye
Size: 33KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.pbmv
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datn
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kbdy
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tvqf
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nkwf
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iekk
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.mwlw
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.enpg
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.feba
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cb05dc77d1cb86628af3de82e0b4a089

Headers

File Characteristics

Imports

kernel32

Sections

.djye Size: 33KB - Virtual size: 100KB

.pbmv Size: 1024B - Virtual size: 4KB

.datn Size: 512B - Virtual size: 4KB

.kbdy Size: 512B - Virtual size: 4KB

.tvqf Size: 1024B - Virtual size: 4KB

.nkwf Size: 512B - Virtual size: 4KB

.iekk Size: 4KB - Virtual size: 3KB

.mwlw Size: 512B - Virtual size: 16B

.enpg Size: 1024B - Virtual size: 4KB

.feba Size: 1024B - Virtual size: 4KB

.djye
Size: 33KB - Virtual size: 100KB

.pbmv
Size: 1024B - Virtual size: 4KB

.datn
Size: 512B - Virtual size: 4KB

.kbdy
Size: 512B - Virtual size: 4KB

.tvqf
Size: 1024B - Virtual size: 4KB

.nkwf
Size: 512B - Virtual size: 4KB

.iekk
Size: 4KB - Virtual size: 3KB

.mwlw
Size: 512B - Virtual size: 16B

.enpg
Size: 1024B - Virtual size: 4KB

.feba
Size: 1024B - Virtual size: 4KB