04f2632b95a98627bb747857b8b57674_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

04f2632b95a98627bb747857b8b57674_JaffaCakes118
Size

6.4MB
MD5

04f2632b95a98627bb747857b8b57674
SHA1

40cf48d4db45d8c818d0bdfb75fe530d18dae406
SHA256

35abea3f57b9bfd232da07c8d8da161e4891430bccaf8453a5cc94fa1eb7e515
SHA512

1e9166ef3ef8ab2812b1f7d5eaf806eec98175592820061523cbed9ccac97c5f4058729d96fb4bfb450d7e0dc9c70fa45b135a292e66c7ecba0b42aeae9ab3e9
SSDEEP

196608:bBrf722feWnpjBMwupFzNyLmvivr6SBJ0qu/mp:k2feWnpjBMwupFzNyav+6q0quE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04f2632b95a98627bb747857b8b57674_JaffaCakes118

Files

04f2632b95a98627bb747857b8b57674_JaffaCakes118
.exe windows:4 windows x86 arch:x86

33e5507b608d44d4ef786a0e7afb121f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
LoadLibraryA
GetProcAddress
SetLastError
ResumeThread
Sleep
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
GetOEMCP
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
CloseHandle
WriteFile
ReadFile
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
CreateFileA
TerminateProcess
GetCurrentProcess
HeapFree
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
HeapAlloc
SetStdHandle
SetEndOfFile
FlushFileBuffers
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
LCMapStringW

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.7MB - Virtual size: 66.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

LAMBDA
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV0
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCVA
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCVZ
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCVY
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV30
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV31
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV32
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV33
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV34
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV35
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV36
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV37
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV38
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV39
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV40
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV41
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV42
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV43
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV44
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV45
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV46
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV47
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV48
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV49
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV50
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV51
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV52
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV53
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV54
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

33e5507b608d44d4ef786a0e7afb121f

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 56KB - Virtual size: 55KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 2.7MB - Virtual size: 66.8MB

LAMBDA Size: 4KB - Virtual size: 4B

ZXCV0 Size: 4KB - Virtual size: 4B

ZXCVA Size: 4KB - Virtual size: 4B

ZXCVZ Size: 4KB - Virtual size: 4B

ZXCVY Size: 4KB - Virtual size: 4B

ZXCV30 Size: 4KB - Virtual size: 4B

ZXCV31 Size: 4KB - Virtual size: 4B

ZXCV32 Size: 4KB - Virtual size: 4B

ZXCV33 Size: 4KB - Virtual size: 4B

ZXCV34 Size: 4KB - Virtual size: 4B

ZXCV35 Size: 4KB - Virtual size: 4B

ZXCV36 Size: 4KB - Virtual size: 4B

ZXCV37 Size: 4KB - Virtual size: 4B

ZXCV38 Size: 4KB - Virtual size: 4B

ZXCV39 Size: 4KB - Virtual size: 4B

ZXCV40 Size: 4KB - Virtual size: 4B

ZXCV41 Size: 4KB - Virtual size: 4B

ZXCV42 Size: 4KB - Virtual size: 4B

ZXCV43 Size: 4KB - Virtual size: 4B

ZXCV44 Size: 4KB - Virtual size: 4B

ZXCV45 Size: 4KB - Virtual size: 4B

ZXCV46 Size: 4KB - Virtual size: 4B

ZXCV47 Size: 4KB - Virtual size: 4B

ZXCV48 Size: 4KB - Virtual size: 4B

ZXCV49 Size: 4KB - Virtual size: 4B

ZXCV50 Size: 4KB - Virtual size: 4B

ZXCV51 Size: 4KB - Virtual size: 4B

ZXCV52 Size: 4KB - Virtual size: 4B

ZXCV53 Size: 4KB - Virtual size: 4B

ZXCV54 Size: 4KB - Virtual size: 4B

.rsrc Size: 140KB - Virtual size: 137KB

.text
Size: 56KB - Virtual size: 55KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 2.7MB - Virtual size: 66.8MB

LAMBDA
Size: 4KB - Virtual size: 4B

ZXCV0
Size: 4KB - Virtual size: 4B

ZXCVA
Size: 4KB - Virtual size: 4B

ZXCVZ
Size: 4KB - Virtual size: 4B

ZXCVY
Size: 4KB - Virtual size: 4B

ZXCV30
Size: 4KB - Virtual size: 4B

ZXCV31
Size: 4KB - Virtual size: 4B

ZXCV32
Size: 4KB - Virtual size: 4B

ZXCV33
Size: 4KB - Virtual size: 4B

ZXCV34
Size: 4KB - Virtual size: 4B

ZXCV35
Size: 4KB - Virtual size: 4B

ZXCV36
Size: 4KB - Virtual size: 4B

ZXCV37
Size: 4KB - Virtual size: 4B

ZXCV38
Size: 4KB - Virtual size: 4B

ZXCV39
Size: 4KB - Virtual size: 4B

ZXCV40
Size: 4KB - Virtual size: 4B

ZXCV41
Size: 4KB - Virtual size: 4B

ZXCV42
Size: 4KB - Virtual size: 4B

ZXCV43
Size: 4KB - Virtual size: 4B

ZXCV44
Size: 4KB - Virtual size: 4B

ZXCV45
Size: 4KB - Virtual size: 4B

ZXCV46
Size: 4KB - Virtual size: 4B

ZXCV47
Size: 4KB - Virtual size: 4B

ZXCV48
Size: 4KB - Virtual size: 4B

ZXCV49
Size: 4KB - Virtual size: 4B

ZXCV50
Size: 4KB - Virtual size: 4B

ZXCV51
Size: 4KB - Virtual size: 4B

ZXCV52
Size: 4KB - Virtual size: 4B

ZXCV53
Size: 4KB - Virtual size: 4B

ZXCV54
Size: 4KB - Virtual size: 4B

.rsrc
Size: 140KB - Virtual size: 137KB