264854e72d7ea6e675f77622b5c1af1a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

264854e72d7ea6e675f77622b5c1af1a_JaffaCakes118
Size

3.2MB
MD5

264854e72d7ea6e675f77622b5c1af1a
SHA1

c1dc2856d5a3991d19c6563ffe11c4272973dd0d
SHA256

64ac069bb3686101e552fdca3df688e9142ccd54d89ad75394a3e3aaf8e58456
SHA512

57c997b6d68ed60dca18b7dd1abae77d50c9886187be2139c52c64f5ea36326526b8d52c7be53ec15d2314aa29c8e49f6775a2278e420ddfc7b2e8b3664473bb
SSDEEP

98304:pE9RH3kZ/qkCq5FU5Xnq1vNkHJAt/txgPaE7j2M:pnZizq83q1vNciXgbiM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
264854e72d7ea6e675f77622b5c1af1a_JaffaCakes118

Files

264854e72d7ea6e675f77622b5c1af1a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cd9efba2b7cf3aa89c43524d3009e943

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileW
ExitProcess
GetCurrentProcessId
GetLogicalDriveStringsW
GetUserDefaultLCID
SetFileAttributesW
VirtualAlloc
GetCommandLineW
GlobalFlags
SetEnvironmentVariableW
FindResourceExA
GetModuleHandleW

gdi32

SetBrushOrgEx
ResizePalette
SetBitmapBits
GetRegionData
SetTextJustification
GetTextMetricsA
CreateSolidBrush
CreateRectRgnIndirect
ArcTo
GetWindowOrgEx
ResetDCA
Ellipse
CreateFontIndirectA

activeds

ord25
ord23
ord20
ord5
ord13
ord3
ord15
ord6
ord26
ord27

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 588KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1002KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1.3MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 1.3MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 8KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd9efba2b7cf3aa89c43524d3009e943

Headers

File Characteristics

Imports

kernel32

gdi32

activeds

Sections

.text Size: 20KB - Virtual size: 19KB

DATA Size: 5KB - Virtual size: 588KB

.idata Size: 1002KB - Virtual size: 1.7MB

.edata Size: 1.3MB - Virtual size: 1.8MB

.orpc Size: 1.3MB - Virtual size: 1.8MB

.tls Size: - Virtual size: 8KB

.CRT Size: 512B - Virtual size: 24B

.rsrc Size: 18KB - Virtual size: 17KB

.reloc Size: 512B - Virtual size: 80B

.text
Size: 20KB - Virtual size: 19KB

DATA
Size: 5KB - Virtual size: 588KB

.idata
Size: 1002KB - Virtual size: 1.7MB

.edata
Size: 1.3MB - Virtual size: 1.8MB

.orpc
Size: 1.3MB - Virtual size: 1.8MB

.tls
Size: - Virtual size: 8KB

.CRT
Size: 512B - Virtual size: 24B

.rsrc
Size: 18KB - Virtual size: 17KB

.reloc
Size: 512B - Virtual size: 80B