e2ab28c58a61a7bc4b9c43fd47162cee_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e2ab28c58a61a7bc4b9c43fd47162cee_JaffaCakes118
Size

600KB
MD5

e2ab28c58a61a7bc4b9c43fd47162cee
SHA1

a7e4a74f75e06a132d66e09de5b7f61068721710
SHA256

bc47793ddabefaa84decab042783c156c80f4b6e6d0c3fa3eac7f57bbc93fdcb
SHA512

8fd893286723be42025113e3d7be6abc94dc5feed5c4498d259178cae96496ebfe736edd625e827f06fc26af031011278e9551c9a4eb00dfa29489268a40ad56
SSDEEP

12288:bq/JLtp4COH1KDjqXBgdbOpKp+KB3TEsvgXxtMiEF8Pvs:WBLtp4hH1KviqmKpfB3TzgXx6iE+P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e2ab28c58a61a7bc4b9c43fd47162cee_JaffaCakes118

Files

e2ab28c58a61a7bc4b9c43fd47162cee_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0718c83f487d71ea74b6fac7921300d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\VQSVJXNDP\OMAVHITO\OQNZD

Imports

kernel32

GetStringTypeExW
HeapCreate
OutputDebugStringA
LeaveCriticalSection
GetSystemTimeAsFileTime
RemoveDirectoryA
SetEnvironmentVariableA
HeapDestroy
GetVolumeInformationA
VirtualQuery
FlushFileBuffers
FreeEnvironmentStringsA
DeleteAtom
LoadLibraryW
GetCommandLineA
GetConsoleScreenBufferInfo
FileTimeToSystemTime
CreateNamedPipeA
SetStdHandle
OpenSemaphoreW
GetSystemInfo
GetStartupInfoA
GetVersion
GetModuleFileNameA
EnumSystemCodePagesW
SetFilePointer
InterlockedExchange
SleepEx
InterlockedCompareExchange
GetACP
WriteConsoleOutputCharacterA
GetFileType
SetPriorityClass
WideCharToMultiByte
MoveFileW
GetLastError
CopyFileExA
FindResourceExA
SetLocaleInfoW
CommConfigDialogW
GetProcAddress
ReadFile
InterlockedDecrement
WriteConsoleW
TlsGetValue
LoadLibraryA
GetLocalTime
GetSystemTime
HeapAlloc
TlsAlloc
FindResourceExW
GetCPInfo
GetEnvironmentStrings
TerminateProcess
GetProcAddress
GetStringTypeA
GetThreadSelectorEntry
DebugBreak
SetVolumeLabelA
QueryPerformanceCounter
GetCurrencyFormatW
MultiByteToWideChar
InitializeCriticalSection
UnhandledExceptionFilter
CompareStringW
CompareStringA
GetStdHandle
RtlUnwind
VirtualFree
SetHandleCount
GetEnvironmentStringsW
SetEnvironmentVariableW
LCMapStringA
GetCurrentThreadId
GetCurrentThread
LockFileEx
DeleteCriticalSection
IsBadWritePtr
CreateMutexA
TlsSetValue
OpenMutexW
GetTickCount
GetStringTypeW
TlsFree
WaitForSingleObjectEx
VirtualFreeEx
HeapFree
FreeEnvironmentStringsW
LCMapStringW
GetLongPathNameA
GetTimeZoneInformation
SetLastError
GetFileAttributesExA
WritePrivateProfileStructA
OpenMutexA
FindFirstFileExA
GetModuleHandleA
SetConsoleCtrlHandler
IsBadReadPtr
HeapReAlloc
ExitProcess
EnterCriticalSection
GetFileAttributesA
CloseHandle
WriteFile
GetProfileStringW
GetCurrentProcess
GetFileTime
GetOEMCP
VirtualAlloc
InterlockedIncrement
GetThreadLocale
HeapValidate
GetCurrentProcessId
FindNextFileW
FormatMessageA
FreeLibraryAndExitThread
GetProcessHeaps
CreateEventA
GetComputerNameW

comctl32

InitCommonControlsEx
ImageList_GetImageInfo
ImageList_DragShowNolock
ImageList_SetDragCursorImage
CreateMappedBitmap
ImageList_Create
ImageList_LoadImage
ImageList_Add
ImageList_Draw
CreateStatusWindowA
ImageList_DragEnter
ImageList_SetOverlayImage
CreateToolbar
ImageList_GetIcon
ImageList_SetFlags
DrawStatusTextA
ImageList_GetIconSize

user32

DestroyWindow
RegisterClassA
ChildWindowFromPointEx
DdeCreateDataHandle
ShowWindow
LoadCursorA
CreateCursor
IsZoomed
GetAltTabInfo
DestroyCursor
SetShellWindow
RegisterClassExA
IsCharAlphaNumericA
CountClipboardFormats
CopyIcon
MoveWindow
EnumDisplaySettingsExW
CreateWindowExA
DrawEdge
RegisterClipboardFormatW
MessageBoxA
GetDesktopWindow
RegisterDeviceNotificationA
InSendMessage
DefWindowProcA
CheckMenuRadioItem
SetParent
UnionRect
ClipCursor

Sections

.text
Size: 184KB - Virtual size: 182KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0718c83f487d71ea74b6fac7921300d9

Headers

File Characteristics

PDB Paths

Imports

kernel32

comctl32

user32

Sections

.text Size: 184KB - Virtual size: 182KB

.rdata Size: 264KB - Virtual size: 260KB

.data Size: 108KB - Virtual size: 117KB

.rsrc Size: 40KB - Virtual size: 38KB

.text
Size: 184KB - Virtual size: 182KB

.rdata
Size: 264KB - Virtual size: 260KB

.data
Size: 108KB - Virtual size: 117KB

.rsrc
Size: 40KB - Virtual size: 38KB