e873957a1a74142fcc250e1ccab2b953_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

e873957a1a74142fcc250e1ccab2b953_JaffaCakes118
Size

490KB
MD5

e873957a1a74142fcc250e1ccab2b953
SHA1

0b491c818a451ff1232574ad8d391c47423b1567
SHA256

161d5d9c12aa7da53df2840dc01cbbb3c727146ca2b2ed7c054ffe36e76e527b
SHA512

de260b5335fca1b83b57fc23714032a35c72dc0a46ab8ba93defbb47be5d2e068781497f05cfabc29665a1fcc3ce0a56b4ac31fc1c36686acfbea5b997bb1a82
SSDEEP

12288:IeoNHDE/B+TV3PaR5RC1IGajfhFCSRt6r5KaEXm1:I1RDEaUgfWhFCS7A4U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e873957a1a74142fcc250e1ccab2b953_JaffaCakes118

Files

e873957a1a74142fcc250e1ccab2b953_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4b05c52a6d1d9058def8cc1588c2e257

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

FlushFileBuffers
OpenMutexA
VirtualQuery
InitializeCriticalSection
GetStartupInfoA
HeapFree
SetConsoleCtrlHandler
VirtualFree
QueryPerformanceCounter
GetEnvironmentStrings
GetModuleFileNameA
LeaveCriticalSection
EnumSystemLocalesA
TlsAlloc
CloseHandle
CompareStringA
GetFileType
GetCurrentProcess
GetDateFormatA
GetUserDefaultLCID
FreeLibrary
EnterCriticalSection
IsDebuggerPresent
EnumDateFormatsExW
GetVersionExA
InterlockedDecrement
WriteConsoleW
DeleteCriticalSection
ExitProcess
UnhandledExceptionFilter
SetStdHandle
FreeEnvironmentStringsA
LoadLibraryA
ReadFile
FreeEnvironmentStringsW
TlsFree
GetStringTypeA
Sleep
CompareStringW
TerminateProcess
SetFilePointer
InterlockedIncrement
HeapSize
InterlockedExchange
GetCurrentProcessId
GetStringTypeW
WriteFile
TlsGetValue
GetEnvironmentStringsW
TlsSetValue
GetCurrentThreadId
GetStdHandle
GetConsoleCP
GetCPInfo
GetLastError
VirtualAlloc
GetConsoleMode
GetModuleHandleA
SetFileAttributesA
LCMapStringW
HeapCreate
HeapDestroy
IsValidCodePage
GetLocaleInfoW
GetLocaleInfoA
MultiByteToWideChar
WideCharToMultiByte
HeapAlloc
RtlUnwind
FlushViewOfFile
CreateMutexA
SetUnhandledExceptionFilter
GetCurrentThread
CreateFileA
GetSystemTimeAsFileTime
LCMapStringA
WriteConsoleA
GetTickCount
GetCommandLineA
GetProcAddress
GetConsoleOutputCP
SetEnvironmentVariableA
HeapReAlloc
SetLastError
SetHandleCount
GetProcessHeap
GetTimeFormatA
GetTimeZoneInformation
GetACP
GetOEMCP
IsValidLocale

user32

IntersectRect
LoadCursorW
CreateDialogParamA
DdeAbandonTransaction
CharPrevA
RegisterClassA
BlockInput
GetThreadDesktop
GetCaretBlinkTime
PtInRect
RegisterClassExA
MoveWindow
DlgDirListComboBoxA
CloseDesktop
wsprintfW
AppendMenuA
LoadAcceleratorsA
ChangeDisplaySettingsExA
GetDlgItemInt

Sections

.text
Size: 344KB - Virtual size: 344KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b05c52a6d1d9058def8cc1588c2e257

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 344KB - Virtual size: 344KB

.rdata Size: 27KB - Virtual size: 47KB

.data Size: 107KB - Virtual size: 106KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 344KB - Virtual size: 344KB

.rdata
Size: 27KB - Virtual size: 47KB

.data
Size: 107KB - Virtual size: 106KB

.rsrc
Size: 10KB - Virtual size: 10KB