050c3902301b25b1a2eabc42b26ceb15_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

050c3902301b25b1a2eabc42b26ceb15_JaffaCakes118
Size

119KB
MD5

050c3902301b25b1a2eabc42b26ceb15
SHA1

c977b183ec72f1db63cac1bab301672d0b4d05b6
SHA256

832b675405509921627e86b0d7067b02a223a760e8d837a5ad8c1749135d9345
SHA512

5b73dc75783ae1a8afdcc0364551e943a2a59fde481b6a88f0ce9816fbdcc7ef147399466525a35b46318f3b2e9a6c629dff192d5d309989d39565e59856ac5d
SSDEEP

3072:0Fch0hq+Yc7Hf4oa5r5sojsj+oMkVLmlJlI6gFcw:0Uycc7/4D95sqBFkV6hI6ocw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
050c3902301b25b1a2eabc42b26ceb15_JaffaCakes118

Files

050c3902301b25b1a2eabc42b26ceb15_JaffaCakes118
.exe windows:4 windows x86 arch:x86

042c3e0dabd645f5ceb44bd41cdd4002

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
GetProcessHeap
VirtualAlloc
Sleep
VirtualProtect
VirtualFree
GetProcAddress
LoadLibraryA
IsBadReadPtr
HeapFree
FreeLibrary
GetLastError
RaiseException
InterlockedExchange
LocalAlloc
GetStartupInfoA
GetModuleHandleA

msvcrt

exit
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_XcptFilter
_exit
??2@YAPAXI@Z
free
realloc
??3@YAXPAX@Z
_acmdln
_stricmp

Exports

Exports

Hai

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/1033/DIALOG/105
.rsrc/1033/DIALOG/106
.rsrc/1033/DIALOG/111
.rsrc/1033/GROUP_ICON/103
.rsrc/1033/ICON/5.ico
.rsrc/1033/ICON/6.ico
.rsrc/1033/ICON/7.ico
.rsrc/1033/MANIFEST/1
.xml
.rsrc/1033/RCDATA/864
.rsrc/2052/BITMAP/TITLE_BMP.bmp
.rsrc/2052/DIALOG/LICENSEDLG
.rsrc/2052/DIALOG/RENAMEDLG
.rsrc/2052/DIALOG/REPLACEFILEDLG
.rsrc/2052/DIALOG/STARTDLG
.rsrc/2052/GROUP_ICON/100
.rsrc/2052/ICON/1.ico
.rsrc/2052/ICON/2.ico
.rsrc/2052/ICON/3.ico
.rsrc/2052/ICON/4.ico
.rsrc/2052/string.txt
.rsrc/2052/version.txt
.text

Sharing

General

Malware Config

Signatures

Files

042c3e0dabd645f5ceb44bd41cdd4002

Headers

File Characteristics

Imports

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 71KB - Virtual size: 73KB

.rsrc Size: 39KB - Virtual size: 40KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 71KB - Virtual size: 73KB

.rsrc
Size: 39KB - Virtual size: 40KB