00e8743b83905d748bbd826067821e86_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

00e8743b83905d748bbd826067821e86_JaffaCakes118
Size

598KB
MD5

00e8743b83905d748bbd826067821e86
SHA1

206ade5969aa872df5bcfd10a6dca9668e5ec6e3
SHA256

9f81f5d68023a01dba42ddff0b86ef7838a5f3ed25450fb628fb0179d0257a4f
SHA512

f4ead846582cf7e5be7bf1e322a2c720d2068c55c2c218359dbb3bf74234b1a49ba3f78fcd68bc96bac5c838c8e825231eaf5635f626c402b8fa068da6c383fb
SSDEEP

12288:yPGcvi0B0lCWvunXUTx8cZbSAx9ASaqahdD07H2JjaXuNvmvMpcL2rr7:zcX0lCTG3bvx9ASaDV0TIjaXQvmvhuv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00e8743b83905d748bbd826067821e86_JaffaCakes118

Files

00e8743b83905d748bbd826067821e86_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c325eed2ed9edf24ad3e1400f24723c3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadPriorityBoost
GetConsoleOutputCP
LocalAlloc
ReleaseSemaphore
GetACP
LCMapStringA
HeapAlloc
LeaveCriticalSection
InitializeCriticalSection
UnhandledExceptionFilter
IsBadReadPtr
SetFilePointer
WideCharToMultiByte
SetThreadLocale
SetEnvironmentVariableA
HeapValidate
RaiseException
GetCommandLineW
GetConsoleCP
TlsSetValue
GetUserDefaultLCID
CreateFileA
GetConsoleMode
DebugBreak
GetVersionExW
GetEnvironmentStrings
InterlockedIncrement
GetCommandLineA
GetProcAddress
RemoveDirectoryA
GetCPInfo
IsValidLocale
GetLastError
CompareStringW
SetPriorityClass
GetEnvironmentStringsW
VirtualQuery
GetStdHandle
IsValidCodePage
GetTimeFormatA
SystemTimeToFileTime
GetLocaleInfoA
InterlockedDecrement
FreeLibrary
HeapReAlloc
GetStartupInfoW
ExitProcess
LocalFileTimeToFileTime
SetLastError
VirtualAlloc
LCMapStringW
QueryPerformanceCounter
GetCurrentProcess
GetOEMCP
GetModuleHandleA
FlushFileBuffers
lstrlenA
GetModuleFileNameW
TlsGetValue
GetTimeZoneInformation
MultiByteToWideChar
CompareStringA
FreeEnvironmentStringsA
SetUnhandledExceptionFilter
SetConsoleCtrlHandler
TlsFree
CloseHandle
WriteFile
GetTickCount
WriteConsoleA
TlsAlloc
EnumSystemLocalesA
WriteConsoleW
GetStringTypeW
RtlUnwind
EnterCriticalSection
GetSystemTimeAsFileTime
VirtualFree
GetStartupInfoA
SetConsoleScreenBufferSize
GetSystemDirectoryA
FreeEnvironmentStringsW
OutputDebugStringA
GetCurrentThread
GetFileType
HeapFree
TerminateProcess
LoadLibraryA
GetPrivateProfileStringW
IsDebuggerPresent
SetHandleCount
OutputDebugStringW
GetModuleFileNameA
HeapDestroy
GetVersionExA
LoadLibraryW
GetTempPathW
InterlockedExchange
GetCurrentProcessId
WriteProfileStringW
GetProcessHeap
GetCurrentThreadId
RtlMoveMemory
GetStringTypeA
SetStdHandle
DeleteCriticalSection
GetDateFormatA
HeapCreate
GetSystemDefaultLCID
GetLocaleInfoW

wininet

InternetCrackUrlA
InternetOpenW
FtpCommandA
IsUrlCacheEntryExpiredA
FtpCommandW

advapi32

LookupAccountSidA
CryptImportKey
RegSetValueA
CryptGetUserKey
CreateServiceA
RegCloseKey
RegReplaceKeyA
GetUserNameW

gdi32

CreateBrushIndirect
GetGlyphOutlineA
ExtEscape
StretchBlt
EqualRgn
GetPaletteEntries
SelectObject
ScaleWindowExtEx
SetPolyFillMode
GetCharWidthA
SetROP2
CreateSolidBrush
EnumICMProfilesA
EnumMetaFile
Polygon
AddFontResourceW
Arc
LineDDA
GetCharWidth32A

Sections

.text
Size: 275KB - Virtual size: 275KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 314KB - Virtual size: 341KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c325eed2ed9edf24ad3e1400f24723c3

Headers

File Characteristics

Imports

kernel32

wininet

advapi32

gdi32

Sections

.text Size: 275KB - Virtual size: 275KB

.data Size: 314KB - Virtual size: 341KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 275KB - Virtual size: 275KB

.data
Size: 314KB - Virtual size: 341KB

.rsrc
Size: 7KB - Virtual size: 7KB