JaffaCakes118_6c4e379986905422a989ff02ff7948d0

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_6c4e379986905422a989ff02ff7948d0
Size

97KB
MD5

6c4e379986905422a989ff02ff7948d0
SHA1

c88905621a9c96c0d6c921510bb086d87ce78579
SHA256

f7d56e44e7476babec05db296b63ae50d0a630d2e9ac1e0a836d56ca7fd90d64
SHA512

6b0711a047b629cb30aac6088a8af67f7d13c9697bbb503adcedd870ac720cd9f41b890b8d9a0740581c78c0c6e7332e5c1bd15c1fecf82768ab34c1c3e8a2a7
SSDEEP

1536:O120jMMnAx5Hn/EHL8/vl2kgx+kscyuxRJXkMNV+nLwCoRwUfZGa:kMOYMgXl2kgx+74/VIwjyUf5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_6c4e379986905422a989ff02ff7948d0

Files

JaffaCakes118_6c4e379986905422a989ff02ff7948d0
.exe windows:5 windows x86 arch:x86

90c0ea9930424d65cf4af6e244d4818e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

W:\cignafications.pdb

Imports

user32

IsCharAlphaNumericW
GetMessagePos
SetRectEmpty
GetMenuState
IsCharUpperA

kernel32

GetDriveTypeW
GetWindowsDirectoryW
GlobalSize
GetFileType

msvcrt

iswalpha
islower

Exports

Exports

visual
?allocateHerzonA@@YGEUfiterscrabW@@PR

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.inten
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.enten
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dirs
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdate
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdate
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdate
Size: 512B - Virtual size: 478B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdate
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dat1
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dat4
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dat5
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90c0ea9930424d65cf4af6e244d4818e

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 33KB - Virtual size: 33KB

.inten Size: 512B - Virtual size: 56B

.enten Size: 512B - Virtual size: 146B

.dirs Size: 512B - Virtual size: 28B

.rdate Size: 512B - Virtual size: 128B

.rdate Size: 512B - Virtual size: 128B

.rdate Size: 512B - Virtual size: 478B

.rdate Size: 512B - Virtual size: 128B

.data Size: 5KB - Virtual size: 20KB

.dat1 Size: - Virtual size: 4KB

.dat4 Size: 9KB - Virtual size: 9KB

.dat5 Size: 36KB - Virtual size: 36KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 33KB - Virtual size: 33KB

.inten
Size: 512B - Virtual size: 56B

.enten
Size: 512B - Virtual size: 146B

.dirs
Size: 512B - Virtual size: 28B

.rdate
Size: 512B - Virtual size: 128B

.rdate
Size: 512B - Virtual size: 128B

.rdate
Size: 512B - Virtual size: 478B

.rdate
Size: 512B - Virtual size: 128B

.data
Size: 5KB - Virtual size: 20KB

.dat1
Size: - Virtual size: 4KB

.dat4
Size: 9KB - Virtual size: 9KB

.dat5
Size: 36KB - Virtual size: 36KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 3KB - Virtual size: 3KB