1688f62bd65a5df026133a374b984e13_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1688f62bd65a5df026133a374b984e13_JaffaCakes118
Size

25KB
MD5

1688f62bd65a5df026133a374b984e13
SHA1

bba02f79d0f85fe0b707ebf1581fa232c926c524
SHA256

f27820d883a2fb4ab166c2c0bc25368896f09b4bdb76dadc6f31c529fae3600c
SHA512

da5710d27e6a9b9aa8748fb94a1591aa5c04196afe302f84e3088ec578e41968ccce2d17128b4aabbf126ac14822ef0673d5a2fc6c715a5ca3c8bca155283382
SSDEEP

384:y16vV+c4J3FXTWWEQ5BSKUZ0UD7i8OBBrX1zClYs:y1yMc+FXTWWf+Z0UD7yBelYs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1688f62bd65a5df026133a374b984e13_JaffaCakes118

Files

1688f62bd65a5df026133a374b984e13_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c119df5541f9eb9977b5e494f1569ae7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ord271
ord497
ord250
ord319
ord253
ord766
ord730
ord781
ord364
ord490
ord744
ord775
ord769
ord246
ord370
ord374
ord778
ord461
ord465
ord740
ord714
ord463
ord464
ord397
ord334
ord654
ord361
ord276
ord282
ord729
ord323
ord269
ord321
ord713
ord268
ord350
ord592
ord306
ord704
ord214
ord429
ord686
ord395
ord352
ord289

user32

ord565
ord530
ord136
ord135
ord142
ord543
ord268
ord575
ord86
ord614
ord220
ord10
ord439
ord432
ord178
ord48
ord228
ord494
ord559
ord434
ord128
ord207
ord217
ord365
ord467
ord291
ord379
ord385
ord287
ord375
ord231
ord307
ord403

gdi32

ord424
ord327
ord376
ord324
ord308

advapi32

ord151
ord194
ord182
ord154
ord174
ord160
ord193

shell32

ord328

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uro
Size: - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c119df5541f9eb9977b5e494f1569ae7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 1024B - Virtual size: 1024B

.data Size: 5KB - Virtual size: 5KB

.idata Size: 1024B - Virtual size: 1024B

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 1KB - Virtual size: 1KB

.uro Size: - Virtual size: 1B

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 1024B - Virtual size: 1024B

.data
Size: 5KB - Virtual size: 5KB

.idata
Size: 1024B - Virtual size: 1024B

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 1KB - Virtual size: 1KB

.uro
Size: - Virtual size: 1B