42acae0207894ee0dea9686a9e2ae8ec_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

42acae0207894ee0dea9686a9e2ae8ec_JaffaCakes118
Size

337KB
MD5

42acae0207894ee0dea9686a9e2ae8ec
SHA1

1fb5b3050ebc3dcda2174de0cbbad4a3fb81d21b
SHA256

9ddcd3a4f93d5ad439fbc00e4bc6e8b6855bfbf262bcbf79bda87e64669ea6de
SHA512

f5cbce32060d4f84bb51f9b7865c7d5f671b88ef5fd7de0756dc043a4a12fd00f3363032048babc2b4432e99a23648aff0bb7b575f20ac95343717cc899995a4
SSDEEP

6144:NuKVDxn4FqM8LEANDMMXByfbkr/FEZoe6jwXszYt3mUEQr7FOUd2P:NuguMM8LEAS/uFEeHGscZ+qxld2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42acae0207894ee0dea9686a9e2ae8ec_JaffaCakes118

Files

42acae0207894ee0dea9686a9e2ae8ec_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Exports

Exports

@@Main@Finalize
@@Main@Initialize
_Form1
__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: - Virtual size: 328KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pwirjbmd
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xx.q49n.
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ofihh0kn
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

l8tgjnwa
Size: - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kmdk915s
Size: 328KB - Virtual size: 332KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nev9kmn8
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f433e7fcc51e68080022754836705744

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: - Virtual size: 328KB

.data Size: - Virtual size: 36KB

.tls Size: - Virtual size: 4KB

.rdata Size: - Virtual size: 4KB

pwirjbmd Size: - Virtual size: 12KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 16KB

xx.q49n. Size: - Virtual size: 24KB

ofihh0kn Size: - Virtual size: 4KB

l8tgjnwa Size: - Virtual size: 100KB

kmdk915s Size: 328KB - Virtual size: 332KB

nev9kmn8 Size: 4KB - Virtual size: 4KB

.text
Size: - Virtual size: 328KB

.data
Size: - Virtual size: 36KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: - Virtual size: 4KB

pwirjbmd
Size: - Virtual size: 12KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 16KB

xx.q49n.
Size: - Virtual size: 24KB

ofihh0kn
Size: - Virtual size: 4KB

l8tgjnwa
Size: - Virtual size: 100KB

kmdk915s
Size: 328KB - Virtual size: 332KB

nev9kmn8
Size: 4KB - Virtual size: 4KB