184cd9461d2ca36486f296671d58387e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

184cd9461d2ca36486f296671d58387e_JaffaCakes118
Size

3.0MB
MD5

184cd9461d2ca36486f296671d58387e
SHA1

f58537acb6bc0c142fb95deb82156c718ebf1d35
SHA256

45008b98dfea1b309e0f9edb423c52c11d40167c291ab34e60828d8137449415
SHA512

39b9aaa44b48c0faaeaa67ad4d9461ecc1c9cb59cbc6ff3d443f433b29908d130a009e7e769ebcaef541f67a5a180a48e7dced22a3dda362493577beeb2308fb
SSDEEP

49152:kdAwxUBpw9cd+ri8dCzawsleEikfW0uWDouVtBPG2nolp9UP26ik8:krxUBpWkP4ssl/isWABPGVp9UYk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
184cd9461d2ca36486f296671d58387e_JaffaCakes118

Files

184cd9461d2ca36486f296671d58387e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a16886db1e46080fa2af9dfab41e5d29

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetCommandLineA
GetModuleHandleA
lstrcmpiA

user32

MessageBoxA

imm32

ImmSetCompositionWindow

gdi32

UnrealizeObject

ole32

CreateStreamOnHGlobal

advapi32

RegQueryValueExA

version

VerQueryValueA

Sections

Size: 598KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.3MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

usffvhlk
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

gelnqjip
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

gelnqjip
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a16886db1e46080fa2af9dfab41e5d29

Headers

File Characteristics

Imports

kernel32

user32

imm32

gdi32

ole32

advapi32

version

Sections

Size: 598KB - Virtual size: 1.3MB

.rsrc Size: 1.3MB - Virtual size: 1.9MB

.idata Size: 1024B - Virtual size: 4KB

Size: 512B - Virtual size: 1.3MB

usffvhlk Size: 1.0MB - Virtual size: 1.0MB

gelnqjip Size: 512B - Virtual size: 4KB

gelnqjip Size: 3KB - Virtual size: 4KB

.data Size: - Virtual size: 4KB

.rsrc
Size: 1.3MB - Virtual size: 1.9MB

.idata
Size: 1024B - Virtual size: 4KB

usffvhlk
Size: 1.0MB - Virtual size: 1.0MB

gelnqjip
Size: 512B - Virtual size: 4KB

gelnqjip
Size: 3KB - Virtual size: 4KB

.data
Size: - Virtual size: 4KB