eb2fc381a39561d128c4dbc56d47edc5_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

eb2fc381a39561d128c4dbc56d47edc5_JaffaCakes118
Size

215KB
MD5

eb2fc381a39561d128c4dbc56d47edc5
SHA1

b64e1e8b7ad71b529518239a401080871dc7b5eb
SHA256

967ae5f49bae45484411067ebdf0ef7efdf74ecab93d1423ec473396bf82ad46
SHA512

d8b26231ecf4e5da0dc081aece50de764f60437abccec6e1cdc1ab71d9ddf212b9212d0f7afe56ab423546a5c460b507823ac9a74e50a4909c6cd31a2225dfc3
SSDEEP

3072:a3iutqFWuxfvgeJN8rSiUUuGsYxCcXdwIxVIgqgGY0TiuB+XsctgXFIh:qiG4fvgeJViUUP9cctGhTiVB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb2fc381a39561d128c4dbc56d47edc5_JaffaCakes118

Files

eb2fc381a39561d128c4dbc56d47edc5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ae0d5fbbca987f321953e712fbc4c16e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStringsW
GetStartupInfoA
GetStringTypeA
LCMapStringW
GetProcAddress
GetSystemInfo
HeapReAlloc
MultiByteToWideChar
LocalAlloc
GetDateFormatA
GetCurrentProcessId
SetHandleCount
SetLocaleInfoA
DeleteCriticalSection
SetLastError
VirtualProtect
GetTimeFormatA
TlsFree
TlsAlloc
WideCharToMultiByte
FreeEnvironmentStringsA
TlsSetValue
MoveFileA
GetLocaleInfoA
GetUserDefaultLCID
SetEndOfFile
GetCommandLineW
CreateToolhelp32Snapshot
InitializeCriticalSection
ExitProcess
GetTickCount
GetStartupInfoW
SetEnvironmentVariableA
HeapFree
ExpandEnvironmentStringsA
GetModuleFileNameA
GetFileType
LoadLibraryA
QueryPerformanceCounter
GlobalFix
VirtualAlloc
GetCPInfo
GetProcessHeap
VirtualFree
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
WritePrivateProfileStructA
EnterCriticalSection
GetACP
IsValidCodePage
TlsGetValue
GetStdHandle
GetPrivateProfileIntW
GetSystemTimeAsFileTime
CompareStringA
LocalFileTimeToFileTime
SetConsoleActiveScreenBuffer
CompareStringW
EnumSystemLocalesA
UnhandledExceptionFilter
LCMapStringA
HeapCreate
GetLastError
GetStringTypeExW
FreeEnvironmentStringsW
IsValidLocale
OpenWaitableTimerW
GetOEMCP
LeaveCriticalSection
GetCommandLineA
GetWindowsDirectoryA
InterlockedExchange
GetEnvironmentStrings
WriteFile
EnumResourceNamesA
HeapDestroy
WriteConsoleW
GetProfileSectionW
GetTimeZoneInformation
GetModuleFileNameW
HeapAlloc
IsBadWritePtr
GetStringTypeW
GetVersionExA
GetLocaleInfoW
VirtualQuery
GetModuleHandleA
HeapSize
GetCurrentThread

comdlg32

GetFileTitleW
ChooseFontA
GetOpenFileNameW
GetSaveFileNameA
ReplaceTextA
GetFileTitleA
FindTextA
GetSaveFileNameW
PageSetupDlgA
ChooseColorA
PrintDlgA
ChooseColorW
GetOpenFileNameA
ReplaceTextW
FindTextW
PrintDlgW

Sections

.text
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae0d5fbbca987f321953e712fbc4c16e

Headers

File Characteristics

Imports

kernel32

comdlg32

Sections

.text Size: 94KB - Virtual size: 94KB

.data Size: 108KB - Virtual size: 129KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 94KB - Virtual size: 94KB

.data
Size: 108KB - Virtual size: 129KB

.rsrc
Size: 12KB - Virtual size: 11KB