d3aeb8a0f08df19d88674208a99a1d2e_JaffaCakes118

General

Target

d3aeb8a0f08df19d88674208a99a1d2e_JaffaCakes118
Size

367KB
MD5

d3aeb8a0f08df19d88674208a99a1d2e
SHA1

84da384c8f5411b93b625f201241eb04df1d6844
SHA256

47097a096e33cd51daae94f8cb04366e2e11f694d9f785a046cba9deb4349425
SHA512

ded6f784f0de602102c5e72c9ef21845ee3d8950f6cfb902dc6d47109fd8575cfd555d0ac58fd2fb5f72d41581caed328b8afc8ebb0ac94c7a8d4ee47ab7f1d0
SSDEEP

6144:gd5h/5eIR/s7QIujAb26kU9nwbF9gvIETIfOMiNANdSNuUg/mgjeCrHXM038DD55:grhBeyVFFpbF9gvFOiyNYNuJ/BKCrHXQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d3aeb8a0f08df19d88674208a99a1d2e_JaffaCakes118

Files

d3aeb8a0f08df19d88674208a99a1d2e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9c8decf3582072f6edfc385a689f44f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateDirectoryA
CreateFileA
DeleteFileA
ExitProcess
FreeLibrary
GetCommandLineA
GetFileTime
GetModuleHandleA
GetProcAddress
GetSystemDirectoryA
GetTempPathA
GetWindowsDirectoryA
LoadLibraryA
lstrcatA
lstrcmpiA
RemoveDirectoryA
SetFileTime
VirtualAlloc
VirtualFree
WriteFile

Sections

.uf3B
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.R67W
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pAeS
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 5KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 286B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 282KB - Virtual size: 285KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9c8decf3582072f6edfc385a689f44f4

Headers

File Characteristics

Imports

kernel32

Sections

.uf3B Size: 39KB - Virtual size: 40KB

.R67W Size: 4KB - Virtual size: 4KB

.pAeS Size: 3KB - Virtual size: 3KB

Size: 17KB - Virtual size: 20KB

Size: 5KB - Virtual size: 8KB

Size: 7KB - Virtual size: 8KB

Size: 5KB - Virtual size: 60KB

Size: 286B - Virtual size: 4KB

Size: 282KB - Virtual size: 285KB

.uf3B
Size: 39KB - Virtual size: 40KB

.R67W
Size: 4KB - Virtual size: 4KB

.pAeS
Size: 3KB - Virtual size: 3KB