0255f743a82cea315480e390f185a0df_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0255f743a82cea315480e390f185a0df_JaffaCakes118
Size

312KB
MD5

0255f743a82cea315480e390f185a0df
SHA1

8a29191e8f962c01f01d9bcf49bf3a4d5bb9526a
SHA256

b337790eab1452f56a1549836cd073fda3660b918ea4c7af9f62c1f384d8d891
SHA512

d231810ae20b1d09107acd4de42d9b3bde857bdda6012dbcc03a8be6965fd0fc7f02d867f6c72ec0e9e845ae6f6affdc24ddcdc0f81c813ed654197aeeb8b775
SSDEEP

6144:7KfiHV5XQc/9IVPQdNkmtaXo1+6EXjKvn5N8HQ9pCd81y5ifI46tY:7VSG9oQdNkmoXH6Mmf5NOayp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0255f743a82cea315480e390f185a0df_JaffaCakes118

Files

0255f743a82cea315480e390f185a0df_JaffaCakes118
.exe windows:4 windows x86 arch:x86

154bd08513fde13060e25f23a21cbf00

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

VirtualFree
GetTickCount
WideCharToMultiByte
GetProcAddress
lstrcmpiA
SetLastError
MultiByteToWideChar
GetLocaleInfoA
GetStringTypeA
SetConsoleMode
HeapAlloc
IsValidCodePage
FreeEnvironmentStringsW
GetSystemInfo
SetEnvironmentVariableA
ReadConsoleOutputW
GetVersionExA
SetFilePointer
GetSystemTimeAsFileTime
GetModuleFileNameA
GetConsoleTitleW
CompareStringA
SetCurrentDirectoryA
FreeEnvironmentStringsA
GetUserDefaultLCID
QueryPerformanceCounter
SetHandleCount
GetOEMCP
GetTempPathA
LoadLibraryA
SetConsoleTitleW
CompareStringW
WriteFile
GetCurrentThread
TlsGetValue
GetACP
WaitForDebugEvent
GetCPInfo
SetStdHandle
LeaveCriticalSection
GetModuleFileNameW
GetWindowsDirectoryA
FlushFileBuffers
GetThreadLocale
TerminateProcess
GetStartupInfoA
EnterCriticalSection
HeapFree
DeleteCriticalSection
VirtualQuery
LCMapStringW
HeapCreate
GetCommandLineW
EnumSystemLocalesA
HeapSize
GetStartupInfoW
GetFileType
GetTimeZoneInformation
ReadFile
OpenMutexA
GetCurrentProcess
WriteConsoleOutputAttribute
lstrlenA
HeapReAlloc
CloseHandle
EnumCalendarInfoW
GetModuleHandleA
IsBadWritePtr
IsValidLocale
GetStringTypeW
GetVolumeInformationW
VirtualProtect
TlsFree
GetTimeFormatA
RtlUnwind
LCMapStringA
SystemTimeToTzSpecificLocalTime
CreateMutexA
TlsSetValue
UnhandledExceptionFilter
TlsAlloc
HeapDestroy
GetCommandLineA
GetStdHandle
InitializeCriticalSection
EnumCalendarInfoExA
ExitProcess
GetCurrentThreadId
WritePrivateProfileStructW
GetCurrentProcessId
GetEnvironmentStrings
GetLocaleInfoW
GetDateFormatA
InterlockedExchange
GetEnvironmentStringsW
VirtualAlloc
GetLastError

user32

LoadKeyboardLayoutW
RegisterClassA
CopyIcon
DialogBoxIndirectParamW
SetWindowsHookExW
LoadMenuIndirectA
RegisterClassExA

shell32

FreeIconList
SHQueryRecycleBinA
SHGetMalloc

Sections

.text
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 145KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

154bd08513fde13060e25f23a21cbf00

Headers

File Characteristics

Imports

comctl32

kernel32

user32

shell32

Sections

.text Size: 144KB - Virtual size: 144KB

.rdata Size: 8KB - Virtual size: 31KB

.data Size: 145KB - Virtual size: 144KB

.rsrc Size: 13KB - Virtual size: 13KB

.text
Size: 144KB - Virtual size: 144KB

.rdata
Size: 8KB - Virtual size: 31KB

.data
Size: 145KB - Virtual size: 144KB

.rsrc
Size: 13KB - Virtual size: 13KB