16147cb7174a6fe34264f3f9fd817e5f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

16147cb7174a6fe34264f3f9fd817e5f_JaffaCakes118
Size

108KB
MD5

16147cb7174a6fe34264f3f9fd817e5f
SHA1

5b09c6bf807265ae275d16012efe8f1cda359c27
SHA256

850d84d77814cf42195229e70e9cc491d57d7838cb86327f1c65b0b1aee40e62
SHA512

d815be2c9c01b75840d94859814d8d07512c4dee5c23bad20a10fc8214bf9c9347ae345bb4b21d8f12848cc5792379c4ce95cb002a07efa4791a0b7e386c77e2
SSDEEP

3072:/re5HtvFfxg0dZUsOtddb7w5jt8BsJJjJ0b:i57f6IROtdtw5WB0JjJ0b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16147cb7174a6fe34264f3f9fd817e5f_JaffaCakes118

Files

16147cb7174a6fe34264f3f9fd817e5f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3f5fb82cab51b8f05b7d48c6eda94ff0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

RemoveVectoredExceptionHandler
IsProcessorFeaturePresent
lstrlenW
GetProcAddress
AddVectoredExceptionHandler
GetThreadPriority
GetModuleHandleA
EnumDateFormatsW
FindFirstVolumeA

powrprof

GetPwrDiskSpindownRange

Sections

f
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

q
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

f
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

f
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

f
Size: 2KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

HiD
Size: 130KB - Virtual size: 128KB

IMAGE_SCN_MEM_READ

5jY
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dUi
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xAU
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mnJ
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

F5J
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f5fb82cab51b8f05b7d48c6eda94ff0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

powrprof

Sections

f Size: 2KB - Virtual size: 4KB

q Size: 2KB - Virtual size: 4KB

f Size: 2KB - Virtual size: 4KB

.tls Size: 2KB - Virtual size: 4KB

f Size: 2KB - Virtual size: 4KB

.RSRC Size: 1.8MB - Virtual size: 1.8MB

f Size: 2KB - Virtual size: 1.7MB

HiD Size: 130KB - Virtual size: 128KB

5jY Size: 14KB - Virtual size: 12KB

dUi Size: 14KB - Virtual size: 12KB

xAU Size: 14KB - Virtual size: 12KB

mnJ Size: 14KB - Virtual size: 12KB

F5J Size: 14KB - Virtual size: 12KB

f
Size: 2KB - Virtual size: 4KB

q
Size: 2KB - Virtual size: 4KB

f
Size: 2KB - Virtual size: 4KB

.tls
Size: 2KB - Virtual size: 4KB

f
Size: 2KB - Virtual size: 4KB

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

f
Size: 2KB - Virtual size: 1.7MB

HiD
Size: 130KB - Virtual size: 128KB

5jY
Size: 14KB - Virtual size: 12KB

dUi
Size: 14KB - Virtual size: 12KB

xAU
Size: 14KB - Virtual size: 12KB

mnJ
Size: 14KB - Virtual size: 12KB

F5J
Size: 14KB - Virtual size: 12KB