623a7cc55cc8ea938001eee563280393_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

623a7cc55cc8ea938001eee563280393_JaffaCakes118
Size

2.0MB
MD5

623a7cc55cc8ea938001eee563280393
SHA1

8cfd082fe1e5399d45ed7e207350c68c71d1cbb2
SHA256

a6e598250968a8dadc072a5bb895f47815e82aa4ca5bcad1f39e99a9a3a776a9
SHA512

a9e9b526332adc36b7c3639ed5e02c64f2f1b7ecde9f4d53f771e6559e994560c14c775086f29859e3f115fac6b0a31d025d35bd0e3e1874c46f7771f78f75ac
SSDEEP

24576:RLD9VcxgOxgyAD0y7q2BB4F0ubSfAEgbNm3ArkEwgWQFnBm:RFtOxAD0ymHF0sAgpwEwQ2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
623a7cc55cc8ea938001eee563280393_JaffaCakes118

Files

623a7cc55cc8ea938001eee563280393_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d82d1c93e3517bb2fec2b2a8ccfafd90

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoTaskMemFree
CLSIDFromProgID
CLSIDFromString
StringFromCLSID
CoGetMalloc

user32

GetScrollInfo
IsDialogMessageW
DrawIconEx
LoadImageW
LoadBitmapW
EqualRect
GetCursor
SetCursorPos
AdjustWindowRectEx
GetScrollRange
TrackPopupMenuEx
SetTimer
SetCapture
IsWindow
RegisterClassExW
RegisterClassW
ExitWindowsEx
DispatchMessageW
TrackMouseEvent

oleaut32

GetErrorInfo
SetErrorInfo
VarNeg
VarBstrFromDate
VarBstrFromCy
VarDateFromStr
VarR8FromStr
VarI4FromStr
VariantChangeTypeEx
VariantCopy
VariantClear
VariantInit
SafeArrayPutElement
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayRedim
SafeArrayCreate
SysReAllocStringLen
SysAllocStringLen

kernel32

SetLastError
CreateFileW
CloseHandle
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapSize
HeapReAlloc
HeapAlloc
GetStringTypeW
OutputDebugStringW
RtlUnwind
LoadLibraryExW
HeapFree
EnterCriticalSection
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
IsDebuggerPresent
IsProcessorFeaturePresent
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
GetVersion
GlobalLock
VirtualAlloc
LeaveCriticalSection
SetFilePointer
GetSystemTime
GetLocalTime
UnmapViewOfFile
lstrcmpiW
GetStartupInfoW
FindResourceExW
DeleteFileW
FindFirstChangeNotificationW
IsBadStringPtrW
MultiByteToWideChar
GetUserDefaultLCID
GetConsoleWindow
GetCommandLineW
RaiseException
EncodePointer
GetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter

Sections

.text
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 762KB - Virtual size: 8.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.9hattt
Size: 318KB - Virtual size: 317KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.un5s2
Size: 319KB - Virtual size: 319KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nk38e
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.3i28
Size: 361KB - Virtual size: 361KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d82d1c93e3517bb2fec2b2a8ccfafd90

Headers

File Characteristics

Imports

ole32

user32

oleaut32

kernel32

Sections

.text Size: 95KB - Virtual size: 95KB

.data Size: 762KB - Virtual size: 8.0MB

.idata Size: 3KB - Virtual size: 2KB

.xdata Size: 1024B - Virtual size: 724B

.9hattt Size: 318KB - Virtual size: 317KB

.un5s2 Size: 319KB - Virtual size: 319KB

.nk38e Size: 42KB - Virtual size: 42KB

.3i28 Size: 361KB - Virtual size: 361KB

.rsrc Size: 99KB - Virtual size: 99KB

.text
Size: 95KB - Virtual size: 95KB

.data
Size: 762KB - Virtual size: 8.0MB

.idata
Size: 3KB - Virtual size: 2KB

.xdata
Size: 1024B - Virtual size: 724B

.9hattt
Size: 318KB - Virtual size: 317KB

.un5s2
Size: 319KB - Virtual size: 319KB

.nk38e
Size: 42KB - Virtual size: 42KB

.3i28
Size: 361KB - Virtual size: 361KB

.rsrc
Size: 99KB - Virtual size: 99KB