4ce3e88588ef62abbdd1cec70801f4cb_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

4ce3e88588ef62abbdd1cec70801f4cb_JaffaCakes118
Size

1.9MB
MD5

4ce3e88588ef62abbdd1cec70801f4cb
SHA1

adaec4dc5f21dfba98cd393493712e035928b957
SHA256

007d16b121f9181e5dc2e21a79d63493bf4660c1b136816314ce9984015eaf26
SHA512

0385eb0ef6967250ad56c1d4df470311bcbe2a6d5556a0ca1344277e2d497d15f363e3eedd509c9c830e70618e2e6de3a9dd0ac5208d956afa9fde9b0b5f3242
SSDEEP

24576:zrECFBUFceTP8TCJvhPX4Dd3iPhVUZnNTGGEergUs:zrPBU6gQCFhP0cwnFEb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ce3e88588ef62abbdd1cec70801f4cb_JaffaCakes118

Files

4ce3e88588ef62abbdd1cec70801f4cb_JaffaCakes118
.exe windows:5 windows x86 arch:x86

89c20f11d1b07fea741f1f9b879b087b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyExW
OpenSCManagerW
RegDeleteValueW

kernel32

LockResource
GlobalAlloc
GlobalUnlock
VirtualAlloc
FreeEnvironmentStringsW
InitializeCriticalSection
EnterCriticalSection
DeleteCriticalSection
SetEvent
ReleaseSemaphore
GetFileType
SetEndOfFile
SetFilePointer
GetFileTime
CloseHandle
GetSystemTimeAsFileTime
LocalFileTimeToFileTime
CreateFileMappingW
GetModuleHandleW
GetSystemDirectoryW
CreateDirectoryW
DeleteFileW
FindNextFileW
IsBadWritePtr
GetUserDefaultLCID
EnumLanguageGroupLocalesW
GetConsoleWindow
GetCommandLineW
RaiseException
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
IsProcessorFeaturePresent
IsDebuggerPresent
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
LeaveCriticalSection
HeapFree
LoadLibraryExW
RtlUnwind
OutputDebugStringW
GetStringTypeW
HeapAlloc
HeapReAlloc
HeapSize
LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CreateFileW

psapi

GetModuleBaseNameW

winscard

SCardFreeMemory
SCardGetStatusChangeW

user32

FrameRect
GetSysColorBrush
ShowCursor
DispatchMessageW
SendMessageTimeoutW
UnregisterDeviceNotification
SetFocus
GetFocus
GetQueueStatus
KillTimer
LoadMenuW
CheckMenuItem
ReleaseDC
BeginPaint
GetWindowRgn
GetScrollRange
EnableScrollBar

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 266KB - Virtual size: 6.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ooane
Size: 207KB - Virtual size: 206KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.e6a7t3
Size: 622KB - Virtual size: 621KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.to99g
Size: 416KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 363KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

89c20f11d1b07fea741f1f9b879b087b

Headers

File Characteristics

Imports

advapi32

kernel32

psapi

winscard

user32

Sections

.text Size: 80KB - Virtual size: 79KB

.data Size: 266KB - Virtual size: 6.6MB

.idata Size: 3KB - Virtual size: 2KB

.xdata Size: 1024B - Virtual size: 724B

.ooane Size: 207KB - Virtual size: 206KB

.e6a7t3 Size: 622KB - Virtual size: 621KB

.to99g Size: 416KB - Virtual size: 416KB

.rsrc Size: 363KB - Virtual size: 362KB

.text
Size: 80KB - Virtual size: 79KB

.data
Size: 266KB - Virtual size: 6.6MB

.idata
Size: 3KB - Virtual size: 2KB

.xdata
Size: 1024B - Virtual size: 724B

.ooane
Size: 207KB - Virtual size: 206KB

.e6a7t3
Size: 622KB - Virtual size: 621KB

.to99g
Size: 416KB - Virtual size: 416KB

.rsrc
Size: 363KB - Virtual size: 362KB