ead6eb8c510474d5497b4496fbbaebae_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ead6eb8c510474d5497b4496fbbaebae_JaffaCakes118
Size

352KB
MD5

ead6eb8c510474d5497b4496fbbaebae
SHA1

67c4aaaeba6bec38bb69d8a87272e9b69d306dd7
SHA256

244520f5d056ccff45cd7f85dc2e205235233e26828cbd2d5402a56ebb62f10f
SHA512

ddb61386cc751448efe75ac3bc8d7b708f130f7da287a4b192d06ec02bfe5692114298a733a2c7744e820ca6d19573936f7fced1d72d864ef9885b0b1f79c607
SSDEEP

6144:1i2aO7oyEBqH/B2ZMe9Toe78Mz2qbCdj8zU7gnhAG7EA/tuWa:1i2aOZIqHKMe9M8z2qbnz/nF7EA/t5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ead6eb8c510474d5497b4496fbbaebae_JaffaCakes118

Files

ead6eb8c510474d5497b4496fbbaebae_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2408ab281c452cfab8428bb8272b9b85

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
VirtualFree
GetUserDefaultLCID
LCMapStringW
SetFilePointer
GetModuleFileNameA
GetACP
ReadFile
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
FlushFileBuffers
HeapDestroy
FreeEnvironmentStringsA
CreateMutexA
GetLocaleInfoW
InitializeCriticalSectionAndSpinCount
SetLastError
CloseHandle
GetStartupInfoA
GetTimeZoneInformation
GetEnvironmentStringsW
EnumSystemLocalesA
GetStringTypeW
GetCurrentThread
GetEnvironmentStrings
ExitProcess
SetLocalTime
GetFileType
GetStringTypeA
Sleep
SetHandleCount
SetConsoleCtrlHandler
DeleteCriticalSection
OpenSemaphoreW
QueryPerformanceCounter
SetStdHandle
EnumTimeFormatsA
MultiByteToWideChar
RtlUnwind
InterlockedDecrement
SetEnvironmentVariableA
TerminateProcess
GetDateFormatA
GetLocaleInfoA
VirtualAlloc
CreateFileA
HeapReAlloc
GetCurrentProcessId
FreeEnvironmentStringsW
GetProcAddress
WriteConsoleW
SetEvent
InterlockedExchange
SetPriorityClass
GetCPInfo
GetCurrentThreadId
IsValidLocale
GetModuleHandleA
GetLastError
WriteFile
FindFirstFileA
GetModuleHandleW
GetOEMCP
TlsFree
LCMapStringA
HeapCreate
HeapAlloc
GetCurrentProcess
LoadLibraryA
CompareStringA
InterlockedIncrement
WriteConsoleA
HeapFree
UnhandledExceptionFilter
GetConsoleOutputCP
TlsAlloc
HeapSize
GetTickCount
IsDebuggerPresent
FreeLibrary
GetConsoleMode
GetConsoleCP
GetCommandLineA
VirtualQuery
GetTimeFormatA
EnterCriticalSection
GetPrivateProfileSectionW
OpenMutexA
IsValidCodePage
TlsGetValue
CompareStringW
WideCharToMultiByte
LeaveCriticalSection
TlsSetValue

user32

WINNLSGetEnableStatus
MessageBoxExW
RegisterClassExA
VkKeyScanExA
RegisterClipboardFormatA
AppendMenuA
DrawMenuBar
ChangeDisplaySettingsA
SetDlgItemTextW
ArrangeIconicWindows
EnableScrollBar
RegisterClassA
SetMenu
ScrollWindow
CreateDialogIndirectParamA
TileWindows
OpenDesktopA
GetScrollBarInfo
GetProcessWindowStation
RegisterWindowMessageW
DlgDirSelectComboBoxExW
ValidateRgn
FindWindowExA
CreateDialogParamW
PostMessageW
DdeConnect

comdlg32

ChooseColorW

comctl32

InitCommonControlsEx

Sections

.text
Size: 186KB - Virtual size: 185KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2408ab281c452cfab8428bb8272b9b85

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

comctl32

Sections

.text Size: 186KB - Virtual size: 185KB

.rdata Size: 10KB - Virtual size: 34KB

.data Size: 148KB - Virtual size: 148KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 186KB - Virtual size: 185KB

.rdata
Size: 10KB - Virtual size: 34KB

.data
Size: 148KB - Virtual size: 148KB

.rsrc
Size: 6KB - Virtual size: 6KB