f76d985d7d91142b8c3bff7c16e2897e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f76d985d7d91142b8c3bff7c16e2897e_JaffaCakes118
Size

927KB
MD5

f76d985d7d91142b8c3bff7c16e2897e
SHA1

9c19ee7b617c0f6e3b8c38b5a3db2871967b9b06
SHA256

a798b868918ccd588d020cdaae1dc34d424d2d77746054fcf318bcdf74d23e63
SHA512

9cefa491bd69402a2a5372b249a8f8d4d2472349e41d8a5ec3b68ab4dc42a8c32d004796026fc5985805ffc6163eaa1d44fa859fb8ba423b34b4b0f15352211e
SSDEEP

24576:0ZTe5WSfnvsaUz9VJdzL82M6vzcGMm0Mj1YVdVqmnnPLh:XZfvu9VT9LMm0MBKnnPLh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f76d985d7d91142b8c3bff7c16e2897e_JaffaCakes118

Files

f76d985d7d91142b8c3bff7c16e2897e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8acf1808ac86390b1ba47e14f5fb8d50

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
GetTickCount
GetCurrentThreadId
GetCurrentThread
GetModuleHandleA
GetVersion
GetCommandLineA
ExitProcess
HeapAlloc
GetProcessHeap
VirtualAlloc
Sleep
VirtualFree
HeapCreate
SizeofResource
GetACP
CloseHandle
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
HeapSize
GetCurrentDirectoryA
GetEnvironmentStrings
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GlobalFree
UnmapViewOfFile
LCMapStringW
GetLastError
InterlockedIncrement
CreateFileA
TlsSetValue
GetFileType
CreateEventA
SetEvent
GetProcAddress
WaitForMultipleObjects
DuplicateHandle
CompareStringA
CompareStringW
GlobalLock
GetCPInfo
GetStartupInfoA
LoadLibraryA
GetVersionExA
FreeLibrary
LoadLibraryW
SetHandleCount
HeapFree
WriteConsoleW
LeaveCriticalSection
WriteConsoleA
SetEnvironmentVariableA
SetUnhandledExceptionFilter
SetFilePointer
GetLocalTime
MultiByteToWideChar
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
FlushFileBuffers
IsDebuggerPresent
SetLastError
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
LocalFree
GetOEMCP
HeapReAlloc
GetSystemTimeAsFileTime
WideCharToMultiByte
FreeEnvironmentStringsW
SetErrorMode
lstrcatA
LocalAlloc
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
WaitForSingleObject

user32

SetCursor
InvalidateRect
GetFocus
SystemParametersInfoA
GetSysColor
MoveWindow
GetDesktopWindow
TrackPopupMenu
LoadIconA
GetDlgItem
SetTimer
SetWindowTextA
GetSystemMetrics
DefWindowProcA
CreateWindowExA
GetWindowLongA
GetWindow
IsWindowEnabled
TranslateMessage
PeekMessageA
EnableWindow
ShowWindow
GetParent
DestroyWindow
SendMessageA
GetCursorPos
SetWindowPos
PostQuitMessage
SetForegroundWindow

Sections

.text
Size: 886KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8acf1808ac86390b1ba47e14f5fb8d50

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 886KB - Virtual size: 1.2MB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 25KB - Virtual size: 24KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 886KB - Virtual size: 1.2MB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 25KB - Virtual size: 24KB

.rsrc
Size: 10KB - Virtual size: 9KB