JaffaCakes118_51ec1631a41116543155d62343c319cc18fbc96ff69d13486628059c8996082d

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_51ec1631a41116543155d62343c319cc18fbc96ff69d13486628059c8996082d
Size

148KB
MD5

d0cb4797148f5af81d9cd86afcf7b9a5
SHA1

a2848df8379f67728df6bc5bc3ea14c7407ff6c6
SHA256

51ec1631a41116543155d62343c319cc18fbc96ff69d13486628059c8996082d
SHA512

773419d7675a2a429c787183398a0239e4eb1672aba2ddbdd998f3bf1bb724868e8e5b3bc3098f6a2be8c61d69f5c91195abebf04fe59190fa61b87cd2a42f5e
SSDEEP

3072:VIKV6IS7ddwK2f83oIi2owcmRFyeTzIUZU34Nkg1pfnRlp5x5CJaXw:VIQ6jXwZeoI3RjTzK34bXp5iB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/2ffa792d22c729a6c092b7a7cc8b7fb2de567c2d370fb6a2e6f4e7ffca74fe79

Files

JaffaCakes118_51ec1631a41116543155d62343c319cc18fbc96ff69d13486628059c8996082d
.zip

Password: infected
2ffa792d22c729a6c092b7a7cc8b7fb2de567c2d370fb6a2e6f4e7ffca74fe79
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.subvent
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.s
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.coguara
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voicele
Size: 512B - Virtual size: 62B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.correla
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cerdoni
Size: 512B - Virtual size: 47B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.risquee
Size: 512B - Virtual size: 35B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.neudeck
Size: 512B - Virtual size: 57B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.steward
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cap
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.seropos
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bifurca
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.inanity
Size: 512B - Virtual size: 53B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.clypeas
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mignonn
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.clinger
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cysto
Size: 512B - Virtual size: 42B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kickout
Size: 512B - Virtual size: 35B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.furf
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.chillne
Size: 512B - Virtual size: 47B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sporoch
Size: 512B - Virtual size: 45B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.coggle
Size: 512B - Virtual size: 57B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.blindfa
Size: 512B - Virtual size: 50B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pawer
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sitopho
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.alular
Size: 512B - Virtual size: 56B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.unconne
Size: 512B - Virtual size: 66B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.chlorog
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.overdem
Size: 512B - Virtual size: 53B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.randomi
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nonerro
Size: 512B - Virtual size: 51B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sabino
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.multipo
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jejunos
Size: 512B - Virtual size: 56B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.unassur
Size: 512B - Virtual size: 263B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.semirel
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 162KB - Virtual size: 211KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

Headers

File Characteristics

Sections

.text Size: 30KB - Virtual size: 29KB

.subvent Size: 512B - Virtual size: 49KB

.s Size: 512B - Virtual size: 49KB

.coguara Size: 512B - Virtual size: 49KB

.voicele Size: 512B - Virtual size: 62B

.correla Size: 512B - Virtual size: 49KB

.cerdoni Size: 512B - Virtual size: 47B

.risquee Size: 512B - Virtual size: 35B

.neudeck Size: 512B - Virtual size: 57B

.steward Size: 512B - Virtual size: 49KB

.cap Size: 512B - Virtual size: 49KB

.seropos Size: 512B - Virtual size: 49KB

.bifurca Size: 512B - Virtual size: 49KB

.inanity Size: 512B - Virtual size: 53B

.clypeas Size: 512B - Virtual size: 49KB

.mignonn Size: 512B - Virtual size: 49KB

.clinger Size: 512B - Virtual size: 49KB

.cysto Size: 512B - Virtual size: 42B

.kickout Size: 512B - Virtual size: 35B

.furf Size: 512B - Virtual size: 49KB

.chillne Size: 512B - Virtual size: 47B

.sporoch Size: 512B - Virtual size: 45B

.coggle Size: 512B - Virtual size: 57B

.blindfa Size: 512B - Virtual size: 50B

.pawer Size: 512B - Virtual size: 49KB

.sitopho Size: 512B - Virtual size: 49KB

.alular Size: 512B - Virtual size: 56B

.unconne Size: 512B - Virtual size: 66B

.chlorog Size: 512B - Virtual size: 49KB

.overdem Size: 512B - Virtual size: 53B

.randomi Size: 512B - Virtual size: 49KB

.nonerro Size: 512B - Virtual size: 51B

.sabino Size: 512B - Virtual size: 36B

.multipo Size: 512B - Virtual size: 49KB

.jejunos Size: 512B - Virtual size: 56B

.rdata Size: 1024B - Virtual size: 880B

.unassur Size: 512B - Virtual size: 263B

.semirel Size: 512B - Virtual size: 160B

.data Size: 162KB - Virtual size: 211KB

.rsrc Size: 99KB - Virtual size: 99KB

.text
Size: 30KB - Virtual size: 29KB

.subvent
Size: 512B - Virtual size: 49KB

.s
Size: 512B - Virtual size: 49KB

.coguara
Size: 512B - Virtual size: 49KB

.voicele
Size: 512B - Virtual size: 62B

.correla
Size: 512B - Virtual size: 49KB

.cerdoni
Size: 512B - Virtual size: 47B

.risquee
Size: 512B - Virtual size: 35B

.neudeck
Size: 512B - Virtual size: 57B

.steward
Size: 512B - Virtual size: 49KB

.cap
Size: 512B - Virtual size: 49KB

.seropos
Size: 512B - Virtual size: 49KB

.bifurca
Size: 512B - Virtual size: 49KB

.inanity
Size: 512B - Virtual size: 53B

.clypeas
Size: 512B - Virtual size: 49KB

.mignonn
Size: 512B - Virtual size: 49KB

.clinger
Size: 512B - Virtual size: 49KB

.cysto
Size: 512B - Virtual size: 42B

.kickout
Size: 512B - Virtual size: 35B

.furf
Size: 512B - Virtual size: 49KB

.chillne
Size: 512B - Virtual size: 47B

.sporoch
Size: 512B - Virtual size: 45B

.coggle
Size: 512B - Virtual size: 57B

.blindfa
Size: 512B - Virtual size: 50B

.pawer
Size: 512B - Virtual size: 49KB

.sitopho
Size: 512B - Virtual size: 49KB

.alular
Size: 512B - Virtual size: 56B

.unconne
Size: 512B - Virtual size: 66B

.chlorog
Size: 512B - Virtual size: 49KB

.overdem
Size: 512B - Virtual size: 53B

.randomi
Size: 512B - Virtual size: 49KB

.nonerro
Size: 512B - Virtual size: 51B

.sabino
Size: 512B - Virtual size: 36B

.multipo
Size: 512B - Virtual size: 49KB

.jejunos
Size: 512B - Virtual size: 56B

.rdata
Size: 1024B - Virtual size: 880B

.unassur
Size: 512B - Virtual size: 263B

.semirel
Size: 512B - Virtual size: 160B

.data
Size: 162KB - Virtual size: 211KB

.rsrc
Size: 99KB - Virtual size: 99KB