3c8a10db3b02c1413b7e967f136d38ae_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3c8a10db3b02c1413b7e967f136d38ae_JaffaCakes118
Size

119KB
MD5

3c8a10db3b02c1413b7e967f136d38ae
SHA1

73231b068fb9309cac22efb3a1ad4f5d72c4ab4f
SHA256

fb4e6004bcc0d2b352211d27426a8ea87e232b69ca2d751bab1bf62a3f2b4780
SHA512

a3f577b4032d41f77b3c116e8910a2f29711fb95ab794e7adbd30857233b168bd2a085fb3c763090fa27ec6063b3865d91b248cc1bc76a824135437e9dd102bd
SSDEEP

3072:Mre5HtvFfxg0dZUsOtddb7w5jt8BsJJjJ02fPr:J57f6IROtdtw5WB0JjJ0CPr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c8a10db3b02c1413b7e967f136d38ae_JaffaCakes118

Files

3c8a10db3b02c1413b7e967f136d38ae_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3f5fb82cab51b8f05b7d48c6eda94ff0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

RemoveVectoredExceptionHandler
IsProcessorFeaturePresent
lstrlenW
GetProcAddress
AddVectoredExceptionHandler
GetThreadPriority
GetModuleHandleA
EnumDateFormatsW
FindFirstVolumeA

powrprof

GetPwrDiskSpindownRange

Sections

f
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

q
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

f
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

f
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

f
Size: 2KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

HiD
Size: 130KB - Virtual size: 128KB

IMAGE_SCN_MEM_READ

5jY
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dUi
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xAU
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mnJ
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

F5J
Size: 14KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f5fb82cab51b8f05b7d48c6eda94ff0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

powrprof

Sections

f Size: 2KB - Virtual size: 4KB

q Size: 2KB - Virtual size: 4KB

f Size: 2KB - Virtual size: 4KB

.tls Size: 2KB - Virtual size: 4KB

f Size: 2KB - Virtual size: 4KB

.RSRC Size: 1.8MB - Virtual size: 1.8MB

f Size: 2KB - Virtual size: 1.7MB

HiD Size: 130KB - Virtual size: 128KB

5jY Size: 14KB - Virtual size: 12KB

dUi Size: 14KB - Virtual size: 12KB

xAU Size: 14KB - Virtual size: 12KB

mnJ Size: 14KB - Virtual size: 12KB

F5J Size: 14KB - Virtual size: 12KB

f
Size: 2KB - Virtual size: 4KB

q
Size: 2KB - Virtual size: 4KB

f
Size: 2KB - Virtual size: 4KB

.tls
Size: 2KB - Virtual size: 4KB

f
Size: 2KB - Virtual size: 4KB

.RSRC
Size: 1.8MB - Virtual size: 1.8MB

f
Size: 2KB - Virtual size: 1.7MB

HiD
Size: 130KB - Virtual size: 128KB

5jY
Size: 14KB - Virtual size: 12KB

dUi
Size: 14KB - Virtual size: 12KB

xAU
Size: 14KB - Virtual size: 12KB

mnJ
Size: 14KB - Virtual size: 12KB

F5J
Size: 14KB - Virtual size: 12KB