d5b3ba447ed77b4d99cde60fb73160e2_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d5b3ba447ed77b4d99cde60fb73160e2_JaffaCakes118
Size

982KB
MD5

d5b3ba447ed77b4d99cde60fb73160e2
SHA1

a83a976db4cc6c42c846d450598bec275093bf2b
SHA256

f5b3dc1f5f534bf1054df001584ac1c1b164262ee69fcf1349bfb5414b02453c
SHA512

2f7d12df4e82b80fe0599af8e3ddbd69029a6d128136fab5c107a7bd434d3c9fe1ecf1df525cc51f23bd6fd2c6ea7022ab9b578b31e7d6a2370ec45c3ad4daa9
SSDEEP

768:bpoUE7J/dXlh0bjHt0u5KwdYumLGldKOwkusx8I:blo/7q/H6a/YuRl3x8I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d5b3ba447ed77b4d99cde60fb73160e2_JaffaCakes118

Files

d5b3ba447ed77b4d99cde60fb73160e2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

871f566131c40f544851d687e3ef38f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
GetProcAddress
GlobalAlloc
GlobalFree
LoadLibraryA

user32

MessageBoxA

Sections

Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 548B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 460B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 604B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SoftComp
Size: 900B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 249B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

871f566131c40f544851d687e3ef38f8

Headers

File Characteristics

Imports

kernel32

user32

Sections

Size: 5KB - Virtual size: 12KB

Size: 548B - Virtual size: 4KB

Size: - Virtual size: 4KB

Size: 460B - Virtual size: 4KB

Size: - Virtual size: 4KB

Size: - Virtual size: 4KB

Size: 604B - Virtual size: 4KB

.rsrc Size: 21KB - Virtual size: 24KB

SoftComp Size: 900B - Virtual size: 4KB

.idata Size: 249B - Virtual size: 4KB

.rsrc Size: 84KB - Virtual size: 84KB

.rsrc Size: 84KB - Virtual size: 84KB

.rsrc Size: 84KB - Virtual size: 84KB

.rsrc Size: 84KB - Virtual size: 84KB

.rsrc
Size: 21KB - Virtual size: 24KB

SoftComp
Size: 900B - Virtual size: 4KB

.idata
Size: 249B - Virtual size: 4KB

.rsrc
Size: 84KB - Virtual size: 84KB

.rsrc
Size: 84KB - Virtual size: 84KB

.rsrc
Size: 84KB - Virtual size: 84KB

.rsrc
Size: 84KB - Virtual size: 84KB