c93769c7de2d8e9c243fd210c6859dd5_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

c93769c7de2d8e9c243fd210c6859dd5_JaffaCakes118
Size

86KB
MD5

c93769c7de2d8e9c243fd210c6859dd5
SHA1

36837eac034c5247655c06ba358c97086793b4a6
SHA256

fb0e913ad7d5e4a1061a6575c8e227d3bcb823cc1679b1ea7b1a7bb917de53d6
SHA512

a207c6aa6ccffe6cd34816fe8312158c3f856b90c7a3e615a495da00f8b85807701596d907d90b6d6780b2dbb6439b064ce736e305a6b6a207e992401fc5db9a
SSDEEP

1536:NHHcQmCpgMFqg7NrR/U22I6Yh/NtL5+nBZbsaQq4NLtEn8ljT:NncrcqgBR/r/Np5EBZbMZ9tEncj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c93769c7de2d8e9c243fd210c6859dd5_JaffaCakes118

Files

c93769c7de2d8e9c243fd210c6859dd5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b190300c663658123f37715fb9dc85a0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrCSpnIW

kernel32

GetSystemTime

user32

IsCharUpperA

Exports

Exports

LowcaseBinarY
?LostForwardTip@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@Y
?TemplateMessage@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@Y

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rt_ecx
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rt_esp
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rt_eax
Size: 512B - Virtual size: 186B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rt_edx
Size: 512B - Virtual size: 59B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rt_ebp
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rt_ebx
Size: 1024B - Virtual size: 577B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rt_ea
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rt_edi
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rt_esi
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rt_ec
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b190300c663658123f37715fb9dc85a0

Headers

File Characteristics

Imports

shlwapi

kernel32

user32

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 27KB

rt_ecx Size: 512B - Virtual size: 24B

rt_esp Size: 512B - Virtual size: 28B

rt_eax Size: 512B - Virtual size: 186B

rt_edx Size: 512B - Virtual size: 59B

rt_ebp Size: 512B - Virtual size: 76B

rt_ebx Size: 1024B - Virtual size: 577B

rt_ea Size: 512B - Virtual size: 64B

rt_edi Size: 512B - Virtual size: 76B

rt_esi Size: 512B - Virtual size: 64B

.data Size: 3KB - Virtual size: 76KB

.rsrc Size: 35KB - Virtual size: 35KB

rt_ec Size: 11KB - Virtual size: 10KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 28KB - Virtual size: 27KB

rt_ecx
Size: 512B - Virtual size: 24B

rt_esp
Size: 512B - Virtual size: 28B

rt_eax
Size: 512B - Virtual size: 186B

rt_edx
Size: 512B - Virtual size: 59B

rt_ebp
Size: 512B - Virtual size: 76B

rt_ebx
Size: 1024B - Virtual size: 577B

rt_ea
Size: 512B - Virtual size: 64B

rt_edi
Size: 512B - Virtual size: 76B

rt_esi
Size: 512B - Virtual size: 64B

.data
Size: 3KB - Virtual size: 76KB

.rsrc
Size: 35KB - Virtual size: 35KB

rt_ec
Size: 11KB - Virtual size: 10KB

.reloc
Size: 2KB - Virtual size: 1KB