ffc8594d43d1723cae4fa79b303d0336_JaffaCakes118

General

Target

ffc8594d43d1723cae4fa79b303d0336_JaffaCakes118
Size

251KB
MD5

ffc8594d43d1723cae4fa79b303d0336
SHA1

a803bfff3eebbb22478bb978ecd3c6dfff2c4ca2
SHA256

e5a277447e0c5c5c30d3aaec1c45960f2344db785e47d1d370262609c41f16a4
SHA512

e8e2e21893f8e89a5eb2551eaf9ae0c30dfea35a38db500bd7a1bd56687667c1a373c2e7c517aaddd268f64401bf8c6e1f7bcb9f5a3128b014251d655fccf284
SSDEEP

6144:T0+VzBrHUqbuAEPN/UjTt6Pr1FvIKEdTzuhOChC38usHfJY6En6T2TSCOCOdNXNR:T0GzCqbdC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ffc8594d43d1723cae4fa79b303d0336_JaffaCakes118

Files

ffc8594d43d1723cae4fa79b303d0336_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f8fbd312a6ab9bfc73af19b7b7d3f68b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

cygwin1

__assert
__errno
__getreent
__main
__progname
_fopen64
_fstat64
_impure_ptr
abort
atoi
calloc
cygwin_internal
dll_crt0__FP11per_process
exit
fclose
feof
fileno
fprintf
fread
free
fwrite
getenv
getopt_long
isspace
malloc
memchr
memcpy
memmove
memset
optarg
optind
printf
pthread_atfork
pthread_create
pthread_getspecific
pthread_key_create
pthread_mutex_lock
pthread_mutex_unlock
pthread_once
pthread_setspecific
puts
realloc
snprintf
strchr
strcmp
strcpy
strerror
strlen
strncmp
strncpy
strrchr
strtod
strtol
vsnprintf
write
__progname

kernel32

AddAtomA
FindAtomA
GetAtomNameA
GetModuleHandleA

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

XOR
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f8fbd312a6ab9bfc73af19b7b7d3f68b

Headers

File Characteristics

Imports

cygwin1

kernel32

Sections

.text Size: 136KB - Virtual size: 135KB

.data Size: 1024B - Virtual size: 672B

.rdata Size: 19KB - Virtual size: 18KB

.bss Size: - Virtual size: 16KB

.idata Size: 2KB - Virtual size: 1KB

XOR Size: 2KB - Virtual size: 2KB

.text
Size: 136KB - Virtual size: 135KB

.data
Size: 1024B - Virtual size: 672B

.rdata
Size: 19KB - Virtual size: 18KB

.bss
Size: - Virtual size: 16KB

.idata
Size: 2KB - Virtual size: 1KB

XOR
Size: 2KB - Virtual size: 2KB