9b809cfd2810b01d794490490026a395_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

9b809cfd2810b01d794490490026a395_JaffaCakes118
Size

714KB
MD5

9b809cfd2810b01d794490490026a395
SHA1

22c425cf0a04e061e3214c6e5fed83a98e970b70
SHA256

3d4c0bf469355466d51106cb6029d804511c74144946a17d82f65bb0e21c2572
SHA512

c1c63abcd85d300371d90ec566a675ec06d301c7fff85b85d4358b38f4c1c4445554f0189140d52ed808bfd5b272a2f332cbbc71fa17600db3ba42a390c63eca
SSDEEP

12288:oP7gcULWRm5WUzRahVUVNmlGloBVE0CBY3t1T:2m4UzRYuVNQMoEHq1T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9b809cfd2810b01d794490490026a395_JaffaCakes118

Files

9b809cfd2810b01d794490490026a395_JaffaCakes118
.exe windows:4 windows x86 arch:x86

45b3a8f0162003dc41a3c658a66e6d80

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

dbghelp

ImageNtHeader

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
HeapReAlloc
HeapAlloc
HeapDestroy
FindClose
WideCharToMultiByte
MultiByteToWideChar
GetModuleFileNameW
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
SetEnvironmentVariableA
GetStdHandle
PeekNamedPipe
GetFileType
LCMapStringW
FindNextFileW
FindFirstFileW
GetFileAttributesW
CreateEventW
lstrcpyW
CloseHandle
GetLocaleInfoW
IsValidLocale
ReadConsoleW
SetEndOfFile
GetUserDefaultLCID
EnumSystemLocalesW
GetConsoleMode
GetTempPathW
GetFileInformationByHandle
FileTimeToLocalFileTime
GetStartupInfoW
GetCurrentProcessId
WaitForSingleObject
ResetEvent
TlsAlloc
UnhandledExceptionFilter
WaitForMultipleObjects
SetEvent
TerminateProcess
SetUnhandledExceptionFilter
TlsFree
TlsSetValue
TlsGetValue
GetCPInfo
GetOEMCP
IsValidCodePage
GetCommandLineA
GetModuleHandleExW
GlobalSize
ReleaseMutex
GetStringTypeW
FlushFileBuffers
HeapSize
HeapFree
SetFileAttributesW
GetCurrentProcess
ExitProcess
FindFirstFileExW
RtlUnwind
EncodePointer
GetFullPathNameW
GetModuleHandleW
GetModuleFileNameA
GetACP
ExitThread
MapViewOfFile
DecodePointer
CreateDirectoryW
FormatMessageW
CreateMutexW
lstrcpynW
MulDiv
GlobalUnlock
InterlockedIncrement
InterlockedDecrement

Sections

.text
Size: 559KB - Virtual size: 558KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/2
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/11
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/12
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45b3a8f0162003dc41a3c658a66e6d80

Headers

File Characteristics

Imports

dbghelp

kernel32

Sections

.text Size: 559KB - Virtual size: 558KB

.data Size: 118KB - Virtual size: 117KB

.rdata Size: 4KB - Virtual size: 4KB

.bss Size: - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 2KB

.CRT Size: 4KB - Virtual size: 4KB

.tls Size: 512B - Virtual size: 44B

.rsrc Size: 11KB - Virtual size: 10KB

/2 Size: 4KB - Virtual size: 4KB

/11 Size: 4KB - Virtual size: 4KB

/12 Size: 4KB - Virtual size: 4KB

.text
Size: 559KB - Virtual size: 558KB

.data
Size: 118KB - Virtual size: 117KB

.rdata
Size: 4KB - Virtual size: 4KB

.bss
Size: - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 2KB

.CRT
Size: 4KB - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 44B

.rsrc
Size: 11KB - Virtual size: 10KB

/2
Size: 4KB - Virtual size: 4KB

/11
Size: 4KB - Virtual size: 4KB

/12
Size: 4KB - Virtual size: 4KB