8c910434bf63730e9921f9082e2cc6f8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

8c910434bf63730e9921f9082e2cc6f8_JaffaCakes118
Size

79KB
MD5

8c910434bf63730e9921f9082e2cc6f8
SHA1

3cbab51240ead89f60b5cf52f3b5e6f53385142e
SHA256

753a6e5294217910c2083a6142084737c33b3d427bf46ecc8bf7a3998ec4c2eb
SHA512

8aaa2af06fc7d5e59e59be125c8d81673eea090bb081b7b8bd46b14b16e056e554d509d23516314b67215688510763e209b40e279848413d1dfa6fe808c0f8c4
SSDEEP

1536:pqEgC98klcv+Yf07gEr0WSJ3m3lB8lgCE0xbNi3gMdstkGH0/JuNiRY:wEgCSB2NgUmJ8ylgJ0XifsttHoUWY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8c910434bf63730e9921f9082e2cc6f8_JaffaCakes118

Files

8c910434bf63730e9921f9082e2cc6f8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1a4527688dc149d3147dc63cd16f827f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
LeaveCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetStdHandle
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
HeapFree
GetModuleHandleW
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsSetValue
SetLastError
GetCurrentThreadId
WideCharToMultiByte
RtlUnwind
HeapAlloc
WriteFile
GetConsoleCP
GetConsoleMode
FlushFileBuffers
LCMapStringW
SetFilePointer
IsProcessorFeaturePresent
CloseHandle
WriteConsoleW
SetStdHandle
CreateFileW
TlsAlloc
GetProcAddress

hlink

HlinkCreateShortcut

stobject

DllGetClassObject

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.voeeTV
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zTV
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.KFc
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.su
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.TNmQ
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.iMag
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.AoTAfg
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a4527688dc149d3147dc63cd16f827f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

hlink

stobject

Sections

.text Size: 18KB - Virtual size: 17KB

.voeeTV Size: 2KB - Virtual size: 2KB

.zTV Size: 1KB - Virtual size: 1KB

.KFc Size: 1KB - Virtual size: 2KB

.su Size: 2KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 1KB

.TNmQ Size: 1024B - Virtual size: 1KB

.iMag Size: 2KB - Virtual size: 2KB

.data Size: 46KB - Virtual size: 284KB

.AoTAfg Size: 1KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 18KB - Virtual size: 17KB

.voeeTV
Size: 2KB - Virtual size: 2KB

.zTV
Size: 1KB - Virtual size: 1KB

.KFc
Size: 1KB - Virtual size: 2KB

.su
Size: 2KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.TNmQ
Size: 1024B - Virtual size: 1KB

.iMag
Size: 2KB - Virtual size: 2KB

.data
Size: 46KB - Virtual size: 284KB

.AoTAfg
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB