16f335a47c0519df953e01df4acf0184_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

16f335a47c0519df953e01df4acf0184_JaffaCakes118
Size

92KB
MD5

16f335a47c0519df953e01df4acf0184
SHA1

67210e6655792dda943496e081ea27885858612b
SHA256

c35c7a944568c8c4c2408be5029abd1fc201a2a05affaf29cc75fceb3487231b
SHA512

7f7d8010d1c1cf7168b5727ae9204e38261c5951aaf161e05f9a2c597c9d85e2c3fc84f091d4f45c5ecb33484cc7840235bd77f88e26c944b299f55f1a3e9107
SSDEEP

1536:SQPfwbyLqOH7rCt/eoneahfSTiIDEuaZ99RtgiKQ5ADz9g2xmAo87IianXg:S25rCjfIDEb9RqPD+2xC87Ia

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16f335a47c0519df953e01df4acf0184_JaffaCakes118

Files

16f335a47c0519df953e01df4acf0184_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3f5fb82cab51b8f05b7d48c6eda94ff0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

RemoveVectoredExceptionHandler
IsProcessorFeaturePresent
lstrlenW
GetProcAddress
AddVectoredExceptionHandler
GetThreadPriority
GetModuleHandleA
EnumDateFormatsW
FindFirstVolumeA

powrprof

GetPwrDiskSpindownRange

Sections

h
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

A
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

h
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

h
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

h
Size: 2KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

OEj
Size: 130KB - Virtual size: 128KB

IMAGE_SCN_MEM_READ

iIA
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DCI
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

IHF
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

EPj
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

A3G
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f5fb82cab51b8f05b7d48c6eda94ff0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

powrprof

Sections

h Size: 2KB - Virtual size: 4KB

A Size: 2KB - Virtual size: 4KB

h Size: 2KB - Virtual size: 4KB

.tls Size: 2KB - Virtual size: 4KB

h Size: 2KB - Virtual size: 4KB

.RSRC Size: 1.8MB - Virtual size: 1.8MB

h Size: 2KB - Virtual size: 1.7MB

OEj Size: 130KB - Virtual size: 128KB

iIA Size: 14KB - Virtual size: 12KB

DCI Size: 14KB - Virtual size: 12KB

IHF Size: 14KB - Virtual size: 12KB

EPj Size: 14KB - Virtual size: 12KB

A3G Size: 14KB - Virtual size: 12KB

h
Size: 2KB - Virtual size: 4KB

A
Size: 2KB - Virtual size: 4KB

h
Size: 2KB - Virtual size: 4KB

.tls
Size: 2KB - Virtual size: 4KB

h
Size: 2KB - Virtual size: 4KB

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

h
Size: 2KB - Virtual size: 1.7MB

OEj
Size: 130KB - Virtual size: 128KB

iIA
Size: 14KB - Virtual size: 12KB

DCI
Size: 14KB - Virtual size: 12KB

IHF
Size: 14KB - Virtual size: 12KB

EPj
Size: 14KB - Virtual size: 12KB

A3G
Size: 14KB - Virtual size: 12KB