16cb127978c31ddabaca139015b37564_JaffaCakes118

General

Target

16cb127978c31ddabaca139015b37564_JaffaCakes118
Size

52KB
MD5

16cb127978c31ddabaca139015b37564
SHA1

16510a968c30c991a0aece9f0bc29ddca99eb5ec
SHA256

e232e67073b16732b2ed6613a118d7babbaa4c5d86bd26f1a16bb0ad584ca3d8
SHA512

a26869831c978209c2f571036d5d6ac23ae031762fd40e79481eecdacfdb51fc5b779f44d489b016d48f596b0089aa05e6f4f276848f0ccf3cf65d3d34687862
SSDEEP

1536:c7VtF6JAR2RCIFLwmGzK4Le+VcONMbRQwIuz:MVtF6JAkYWOzKkJlIOw5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16cb127978c31ddabaca139015b37564_JaffaCakes118

Files

16cb127978c31ddabaca139015b37564_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6711ade165f2024119d1b51e7465edf6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
GetSystemDirectoryA
SizeofResource
DeleteFileA
GetCurrentDirectoryA
LockResource
LoadResource
FindResourceA
GetModuleHandleA
GetCommandLineA
CloseHandle
SetFileTime
GetFileTime
CreateFileA

mfc42

ord6385
ord1979
ord5186
ord354
ord668
ord356
ord1575
ord825
ord3318
ord823
ord5442
ord2393
ord353
ord537
ord665
ord800
ord815
ord561
ord1168

msvcrt

_except_handler3
__set_app_type
_controlfp
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
__p___initenv
exit
_exit
_onexit
__dllonexit
__CxxFrameHandler
memset
strcat
_XcptFilter
??1type_info@@UAE@XZ

msvcp60

?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??1_Winit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??0Init@ios_base@std@@QAE@XZ

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6711ade165f2024119d1b51e7465edf6

Headers

File Characteristics

Imports

kernel32

mfc42

msvcrt

msvcp60

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 520B

.rsrc Size: 46KB - Virtual size: 45KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 520B

.rsrc
Size: 46KB - Virtual size: 45KB