0c7719bbd8e2acd27195e250165f07c9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0c7719bbd8e2acd27195e250165f07c9_JaffaCakes118
Size

974KB
MD5

0c7719bbd8e2acd27195e250165f07c9
SHA1

fe7445b1d74ff865a260d7643c8eb899858e9343
SHA256

476daa804cf063a1967ee02cec793b98133719d07d7cd8654b965a5bc285f535
SHA512

ee777cc72312d0b0de17396a0626d72794a42a7b55e51a7f0bbe58b149f0801a02e9646f152012eae2acb884ef71a517ea3a62a7fb70fb5851c72df89691d986
SSDEEP

6144:wz4aVvv5MsxGlx4fbDHHWnQP9anNRrLYW92Q9WCf07cU8/q6wOkrloWd:wEaVni2Glxqbbf9Lw9WpmS6wOkrlo+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c7719bbd8e2acd27195e250165f07c9_JaffaCakes118

Files

0c7719bbd8e2acd27195e250165f07c9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: - Virtual size: 420KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mx8.q493
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

mmkadhdm
Size: - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ltwntt4h
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hhvcncv3
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cl42.aj8
Size: 288KB - Virtual size: 292KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

o7xq854k
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f433e7fcc51e68080022754836705744

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: - Virtual size: 420KB

mx8.q493 Size: - Virtual size: 80KB

.data Size: - Virtual size: 48KB

.rsrc Size: 512B - Virtual size: 4KB

mmkadhdm Size: - Virtual size: 44KB

ltwntt4h Size: - Virtual size: 4KB

hhvcncv3 Size: - Virtual size: 28KB

cl42.aj8 Size: 288KB - Virtual size: 292KB

o7xq854k Size: 96KB - Virtual size: 96KB

.text
Size: - Virtual size: 420KB

mx8.q493
Size: - Virtual size: 80KB

.data
Size: - Virtual size: 48KB

.rsrc
Size: 512B - Virtual size: 4KB

mmkadhdm
Size: - Virtual size: 44KB

ltwntt4h
Size: - Virtual size: 4KB

hhvcncv3
Size: - Virtual size: 28KB

cl42.aj8
Size: 288KB - Virtual size: 292KB

o7xq854k
Size: 96KB - Virtual size: 96KB