fdee3fcb43be6235168b54c7988a6836_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fdee3fcb43be6235168b54c7988a6836_JaffaCakes118
Size

113KB
MD5

fdee3fcb43be6235168b54c7988a6836
SHA1

d7093979e0e79779b8efe74ce4e27103f1b7ba9d
SHA256

436f27f3da78d104d957928e4ed3865ba73a0e97641672efd0566443e9094235
SHA512

26ff90ac8e643b9f7f32bf799ba022ce790a06dd975ac031882516f79602d40146026cbebfbbafcf6bfb4fc1b489fbe8cfaa086879ac25f4b4778602de1c29b9
SSDEEP

768:VuAT5jt9mfu1D1+FWo8iDnXp7cF1HbyJPqPRGyMF0P8DoyabHFMQk47:Vd5j6W1D1+Fw4n57c37GiJ7MFGyabH0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fdee3fcb43be6235168b54c7988a6836_JaffaCakes118

Files

fdee3fcb43be6235168b54c7988a6836_JaffaCakes118
.exe windows:1 windows x86 arch:x86

afe40f960e48c93258a3aebe965260aa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
GetProcessHeap
EnterCriticalSection
WideCharToMultiByte
WaitForSingleObject
WaitForSingleObject
InterlockedDecrement
InitializeCriticalSection
SetEvent
CloseHandle
CloseHandle
GetTickCount
ReadFile
InitializeCriticalSection
SetFilePointer
HeapFree
Sleep
ReadFile
TerminateProcess
GetModuleFileNameA
VirtualAlloc
WaitForSingleObject
SetEvent
LocalAlloc
MultiByteToWideChar

Sections

.ojky
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.codt
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ydvw
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rhfm
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.klpr
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.axry
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kxyg
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bukm
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hfoh
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

afe40f960e48c93258a3aebe965260aa

Headers

File Characteristics

Imports

kernel32

Sections

.ojky Size: 102KB - Virtual size: 120KB

.codt Size: 1024B - Virtual size: 4KB

.ydvw Size: 512B - Virtual size: 4KB

.rhfm Size: 512B - Virtual size: 4KB

.klpr Size: 1024B - Virtual size: 4KB

.axry Size: 512B - Virtual size: 4KB

.kxyg Size: 2KB - Virtual size: 2KB

.rsrc Size: 512B - Virtual size: 12B

.bukm Size: 1024B - Virtual size: 4KB

.hfoh Size: 1024B - Virtual size: 4KB

.ojky
Size: 102KB - Virtual size: 120KB

.codt
Size: 1024B - Virtual size: 4KB

.ydvw
Size: 512B - Virtual size: 4KB

.rhfm
Size: 512B - Virtual size: 4KB

.klpr
Size: 1024B - Virtual size: 4KB

.axry
Size: 512B - Virtual size: 4KB

.kxyg
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 512B - Virtual size: 12B

.bukm
Size: 1024B - Virtual size: 4KB

.hfoh
Size: 1024B - Virtual size: 4KB