3ba56a321e021ada9b9622a6a3dd5b10_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3ba56a321e021ada9b9622a6a3dd5b10_JaffaCakes118
Size

279KB
MD5

3ba56a321e021ada9b9622a6a3dd5b10
SHA1

457b193493d96a915e3b24f37a3facfeed822b75
SHA256

93ec89317817662d7b7046c1ab64eb75bd8e2afac9163957386f73ad7d430b33
SHA512

80ac22d4e4c0ead2d1c78f186454da1cc652a8de9c80720ea23cf1454f6a544777fa5ebaba128f20543556cf12b92298833d06e6719ed0779d8a52df42df7df4
SSDEEP

1536:uzqJNtB7bpZeDEINza7GXzBEj63QcrxEHNnRxS2SE:ueJNt7Ca7GXzBEj63QcrxE1Rt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ba56a321e021ada9b9622a6a3dd5b10_JaffaCakes118

Files

3ba56a321e021ada9b9622a6a3dd5b10_JaffaCakes118
.exe windows:1 windows x86 arch:x86

d5500e160bbede05d0f416c3012fcaf7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
SetUnhandledExceptionFilter
InterlockedIncrement
GetSystemTimeAsFileTime
InterlockedIncrement
HeapDestroy
InterlockedDecrement
VirtualFree
InterlockedDecrement
WideCharToMultiByte
SetUnhandledExceptionFilter
FormatMessageW
WaitForSingleObject
SetEvent
GetCommandLineA
CreateThread
GetCommandLineW
GetProcAddress
LocalAlloc
GetProcAddress
HeapReAlloc
GetProcessHeap
GetStartupInfoA
LocalFree
HeapDestroy
lstrcpyW
FreeLibrary
ReadFile
WriteFile
DeleteCriticalSection
MultiByteToWideChar
SetFilePointer
TerminateProcess
SetEvent
GetModuleHandleW
GetSystemTimeAsFileTime
GetCurrentProcess
lstrlenW
InitializeCriticalSection
GetCurrentThreadId
DeleteCriticalSection
LoadLibraryA
SetFilePointer
GetACP
GetCurrentProcessId
GetModuleFileNameA
lstrlenW

Sections

.text
Size: 214KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 24KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 512B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d5500e160bbede05d0f416c3012fcaf7

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 214KB - Virtual size: 216KB

.data Size: 512B - Virtual size: 4KB

Size: 1024B - Virtual size: 4KB

Size: 2KB - Virtual size: 4KB

Size: 4KB - Virtual size: 4KB

Size: 3KB - Virtual size: 4KB

Size: 3KB - Virtual size: 4KB

Size: 2KB - Virtual size: 4KB

Size: 3KB - Virtual size: 4KB

Size: 11KB - Virtual size: 12KB

Size: 8KB - Virtual size: 8KB

Size: 24KB - Virtual size: 8KB

Size: 512B - Virtual size: 512B

.text
Size: 214KB - Virtual size: 216KB

.data
Size: 512B - Virtual size: 4KB