0aa362ae4836bc5da7be1522f706ca07_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0aa362ae4836bc5da7be1522f706ca07_JaffaCakes118
Size

213KB
MD5

0aa362ae4836bc5da7be1522f706ca07
SHA1

31e46aa871de3944a584d80a2acf48e3a5e20580
SHA256

e3e5e8b3d9404c3ca74138e6fdc69c007525752c2dfeea326ccd39e5cd0d7e6f
SHA512

2fc0e246f256e496c6efa33ace347a1c1a5c0f388e76af94ce38a7cbda0772c11a7eaffc661ba11a0e9f5b26fd2ec3e7d235f182ea587f28c50204decbf0dd30
SSDEEP

3072:Uoa+MuIhDUpKo8rMolf7ukaTGU0tj5In32o87py26D/b0Hppf/66w1pZEMe:UoJoWFqx8WXO327yvM/3PqZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0aa362ae4836bc5da7be1522f706ca07_JaffaCakes118

Files

0aa362ae4836bc5da7be1522f706ca07_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a34628b0a432f54bf2ec811a8b262cf5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

comdlg32

GetSaveFileNameA
GetOpenFileNameA

version

VerFindFileA
VerInstallFileA
GetFileVersionInfoSizeA

kernel32

GetLastError
ExitThread
VirtualAllocEx
GetProcAddress
lstrlenA
IsBadHugeReadPtr
GetVersionExA
GlobalAlloc
GetModuleHandleA
LoadLibraryA
IsBadReadPtr
LocalAlloc
ExitProcess

gdi32

GetObjectA
GetDIBits
SelectPalette
GetDIBColorTable

Sections

CODE
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 133KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RSRC0
Size: 1024B - Virtual size: 820B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RSRC4
Size: 512B - Virtual size: 207B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RSRC7
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RSRC9
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RSRC6
Size: 512B - Virtual size: 143B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RSRC3
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a34628b0a432f54bf2ec811a8b262cf5

Headers

File Characteristics

Imports

comdlg32

version

kernel32

gdi32

Sections

CODE Size: 71KB - Virtual size: 70KB

.data Size: 133KB - Virtual size: 132KB

RSRC0 Size: 1024B - Virtual size: 820B

RSRC4 Size: 512B - Virtual size: 207B

RSRC7 Size: 1KB - Virtual size: 1KB

RSRC9 Size: 1024B - Virtual size: 522B

RSRC6 Size: 512B - Virtual size: 143B

RSRC3 Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 936B

CODE
Size: 71KB - Virtual size: 70KB

.data
Size: 133KB - Virtual size: 132KB

RSRC0
Size: 1024B - Virtual size: 820B

RSRC4
Size: 512B - Virtual size: 207B

RSRC7
Size: 1KB - Virtual size: 1KB

RSRC9
Size: 1024B - Virtual size: 522B

RSRC6
Size: 512B - Virtual size: 143B

RSRC3
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 936B