52a2b58eca5cfa3ac559557253dcdf6c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

52a2b58eca5cfa3ac559557253dcdf6c_JaffaCakes118
Size

158KB
MD5

52a2b58eca5cfa3ac559557253dcdf6c
SHA1

1344627c6c3a9598c76343f2bcfa1eaa48da124d
SHA256

9191f2d560afe5ada39d8ade041e44ab5291f2c7896746aee9d94357bb13fdbc
SHA512

98fe4d4d50dde033d38f28567220913eaa24195320cc08310e4c9deae7140b24f35b9ed4dd0a73e7176214fcdb777051b138972943dcb1bf07758cf654da12ca
SSDEEP

1536:RoFmDeTmTmxzaLeUIwSIKOmJELHGOeU9w:RtsxGLQwS3OQELH/g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
52a2b58eca5cfa3ac559557253dcdf6c_JaffaCakes118

Files

52a2b58eca5cfa3ac559557253dcdf6c_JaffaCakes118
.exe windows:1 windows x86 arch:x86

1f2012b92a702a9e1913a3b9a8e5b044

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
VirtualAlloc
CreateThread
CloseHandle
ExitProcess
UnhandledExceptionFilter
LocalFree
HeapAlloc
lstrcpyW
GetLastError
HeapFree
LocalFree
GetCurrentThreadId
CreateFileW
SetFilePointer
LocalAlloc
ExitProcess
FreeLibrary
GetACP
QueryPerformanceCounter
GetACP
GetSystemTimeAsFileTime
SetLastError
SetUnhandledExceptionFilter
lstrlenW
GetProcessHeap
DeleteCriticalSection
LeaveCriticalSection
FormatMessageW
GetCurrentProcessId
lstrlenW
GetProcessHeap
VirtualAlloc
LoadLibraryA
GetTickCount
GetSystemTimeAsFileTime
LocalFree
InterlockedDecrement
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetACP
LocalAlloc
MultiByteToWideChar
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetProcAddress

Sections

.text
Size: 141KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1f2012b92a702a9e1913a3b9a8e5b044

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 141KB - Virtual size: 156KB

.text Size: 512B - Virtual size: 4KB

.text Size: 3KB - Virtual size: 4KB

Size: 512B - Virtual size: 4KB

Size: 1024B - Virtual size: 4KB

Size: 1024B - Virtual size: 4KB

Size: 4KB - Virtual size: 8KB

Size: 1024B - Virtual size: 4KB

Size: 512B - Virtual size: 4KB

Size: 2KB - Virtual size: 4KB

Size: 2KB - Virtual size: 4KB

.text
Size: 141KB - Virtual size: 156KB

.text
Size: 512B - Virtual size: 4KB

.text
Size: 3KB - Virtual size: 4KB