f740458b03d17a61b419a3ec8b91441b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f740458b03d17a61b419a3ec8b91441b_JaffaCakes118
Size

341KB
MD5

f740458b03d17a61b419a3ec8b91441b
SHA1

84de8cff8a61c95c408f5bd165415c01fdbd449c
SHA256

4bd9a5445ea8f2f35bbd2bad5d0ff2a12441df54bef7dd0306e5113cab7313f8
SHA512

bf1f6c04140c18be63c286c195f0fa7013d897af24ee0266c86fbbae4ade10a58daeef4323a9ae87e1125e86538947c146cfb294797cd57f51116f45b9dacd7e
SSDEEP

6144:M982P458oUakComHkIuxeD+Kx2LXClvPgxa2NJM5wqeWNBY:MG2P4dfuxBKx2LO6MysN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f740458b03d17a61b419a3ec8b91441b_JaffaCakes118

Files

f740458b03d17a61b419a3ec8b91441b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dd3666223ea90c226f16aa233c698f0e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeFormatA
SetStdHandle
CompareStringA
RtlUnwind
EnumSystemLocalesA
GetModuleHandleA
GetStartupInfoA
GetTimeZoneInformation
InterlockedExchange
LCMapStringW
WriteFile
SetHandleCount
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
VirtualAlloc
TlsSetValue
HeapAlloc
CompareStringW
lstrcpy
SetFilePointer
GetCurrentProcessId
OpenMutexA
GetConsoleMode
QueryPerformanceCounter
GetLocaleInfoW
GetCPInfo
IsValidLocale
HeapReAlloc
GetStringTypeW
GetTickCount
SetEvent
CreateMutexA
GetProcAddress
GetFileAttributesW
GetCommandLineA
LoadLibraryA
DeleteCriticalSection
Sleep
GetStringTypeA
WriteConsoleW
TerminateProcess
InitializeCriticalSectionAndSpinCount
GetStdHandle
SetUnhandledExceptionFilter
GetModuleFileNameA
SetEnvironmentVariableA
TlsGetValue
IsValidCodePage
ExitProcess
SetThreadIdealProcessor
GetUserDefaultLCID
GetCurrentThreadId
GetConsoleOutputCP
GetACP
TlsAlloc
HeapSize
HeapDestroy
FlushFileBuffers
GetDateFormatA
WriteConsoleA
HeapFree
UnhandledExceptionFilter
GetEnvironmentStringsW
lstrcat
GetComputerNameA
VirtualQuery
GetConsoleCP
SetConsoleScreenBufferSize
EnterCriticalSection
GetFileType
GetCurrentProcess
VirtualFree
CreateFileA
HeapCreate
LCMapStringA
GetModuleHandleW
LeaveCriticalSection
GetLastError
IsDebuggerPresent
CloseHandle
WideCharToMultiByte
InterlockedDecrement
SetLastError
GetMailslotInfo
GetLocaleInfoA
FreeLibrary
FindFirstFileW
GetOEMCP
GetEnvironmentStrings
GetCurrentThread
FreeEnvironmentStringsA
TlsFree
InterlockedIncrement
SetConsoleCtrlHandler
ReadFile
GetAtomNameW
MultiByteToWideChar

comctl32

InitCommonControlsEx

user32

FlashWindow
GetSubMenu
EnumDisplaySettingsW
GetListBoxInfo
RegisterClipboardFormatW
EnableMenuItem
DdeGetData
DefMDIChildProcW
LookupIconIdFromDirectoryEx
RegisterClassExA
CheckRadioButton
wsprintfW
CharLowerBuffA
RegisterClassA
SetSystemCursor

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dd3666223ea90c226f16aa233c698f0e

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 148KB - Virtual size: 147KB

.rdata Size: 9KB - Virtual size: 31KB

.data Size: 172KB - Virtual size: 172KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 148KB - Virtual size: 147KB

.rdata
Size: 9KB - Virtual size: 31KB

.data
Size: 172KB - Virtual size: 172KB

.rsrc
Size: 10KB - Virtual size: 10KB