14a29a22c1ab52d1eae69acbe97cdb05_JaffaCakes118

General

Target

14a29a22c1ab52d1eae69acbe97cdb05_JaffaCakes118
Size

49KB
MD5

14a29a22c1ab52d1eae69acbe97cdb05
SHA1

c0d056a43a148fe9ea2fb2d8e634a43caca8c239
SHA256

7170239b72c6e5ee5ee5be8180d05a92b2838c13c58967b3d110c3b22ddfa489
SHA512

efa112f86fcb07a30086f2ed30e3b1a1b6218f048394f6c7822e2caab8743754e4c8b7bf386c19896698f0aa785c1fdb6218f00e72f33b8ec2f65c76a418f29b
SSDEEP

192:VGt3j5XVLkbqAXG/YUudf2aNw7RO5w8pfRIs6op0bVlPoHscbijexrFsUjsUoWPf:4tllLk+XdO5w8pfNcVUbiSxRfo4V9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14a29a22c1ab52d1eae69acbe97cdb05_JaffaCakes118

Files

14a29a22c1ab52d1eae69acbe97cdb05_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a3f3ef898542a6a08d5902706927fbc2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ord775
ord766
ord761
ord763
ord781
ord370
ord762
ord759
ord686
ord214
ord497
ord374
ord713
ord461
ord465
ord740
ord714
ord463
ord464
ord397
ord334
ord654
ord361
ord276
ord282
ord729
ord323
ord269
ord332
ord352
ord395
ord289
ord429
ord321
ord306
ord592
ord704
ord350
ord268

user32

ord530
ord307
ord291
ord140
ord521
ord175
ord370
ord432
ord234
ord490
ord403
ord220
ord229
ord198
ord453
ord10
ord178
ord177
ord231

gdi32

ord169
ord175

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 823B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 620B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lsgvpzi
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a3f3ef898542a6a08d5902706927fbc2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 1024B - Virtual size: 823B

.data Size: 4KB - Virtual size: 5KB

.idata Size: 1024B - Virtual size: 620B

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 28KB - Virtual size: 29KB

lsgvpzi Size: - Virtual size: 4KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 1024B - Virtual size: 823B

.data
Size: 4KB - Virtual size: 5KB

.idata
Size: 1024B - Virtual size: 620B

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 28KB - Virtual size: 29KB

lsgvpzi
Size: - Virtual size: 4KB