08b4e91349198a22026d9447ee0e4a09_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

08b4e91349198a22026d9447ee0e4a09_JaffaCakes118
Size

48KB
MD5

08b4e91349198a22026d9447ee0e4a09
SHA1

6c25388398e49c5c178a920097ea05201ad767ce
SHA256

ed51b2544c1bc4fe5a1d466b8ceb7f218e99690cdde67d9dc69da62b4aa4401b
SHA512

600adc2be8528e2aca4ac4bedad87858b209a0b2b70efa70d24f53bc0ef79e4684a68bf699c0c91bb4d2421b797b0a57f8cbb55e1c625352db1a30e57ca42b79
SSDEEP

384:MTXd6w9PocSI3v7q7+ZDz6S/RK/T1qI8TsJycZrfOK0T3dTHL+N8:MTN6w9BSITq7+PK71qI8HpTs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08b4e91349198a22026d9447ee0e4a09_JaffaCakes118

Files

08b4e91349198a22026d9447ee0e4a09_JaffaCakes118
.exe windows:1 windows x86 arch:x86

f2c2500def6aee875ef8cae81d6eab3d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
SetUnhandledExceptionFilter
CloseHandle
LoadLibraryA
MultiByteToWideChar
SetLastError
HeapFree
HeapAlloc
GetCurrentProcess
CreateFileW
GetProcAddress
VirtualFree
CreateFileW
ReadFile
LeaveCriticalSection
UnhandledExceptionFilter
GetStartupInfoW
GetProcessHeap
HeapAlloc
GetCommandLineW
ReadFile
LoadLibraryA
FreeLibrary
GetModuleHandleW
GetModuleHandleA
DeleteCriticalSection
ReadFile
lstrcmpiW
EnterCriticalSection
GetACP
lstrcmpiW
GetStartupInfoW
MultiByteToWideChar
GetCurrentProcess
GetTickCount
LoadLibraryA
FreeLibrary
GetLastError
GetCurrentThreadId
SetLastError
ReadFile
GetModuleHandleW
HeapReAlloc
GetStartupInfoA
HeapFree
UnhandledExceptionFilter
lstrcmpiW
InterlockedIncrement
MultiByteToWideChar
EnterCriticalSection
GetStartupInfoA
GetLastError
SetUnhandledExceptionFilter
LocalAlloc
VirtualFree
WriteFile
lstrlenW
lstrlenW
InterlockedDecrement
ExitProcess
SetFilePointer
LoadLibraryA
GetCurrentProcessId
FreeLibrary
GetSystemTimeAsFileTime
LocalAlloc
Sleep
GetACP
LoadLibraryW
GetLastError
HeapAlloc
QueryPerformanceCounter
InitializeCriticalSection
LoadLibraryW
LeaveCriticalSection
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
QueryPerformanceCounter
InterlockedIncrement
InterlockedDecrement
GetStartupInfoA
GetSystemTimeAsFileTime
HeapDestroy
LocalAlloc
SetUnhandledExceptionFilter
GetStartupInfoA
TerminateProcess
DeleteCriticalSection
GetCurrentThreadId
GetModuleHandleA
SetFilePointer
GetStartupInfoW
GetCommandLineA
CreateFileW
lstrlenW
LoadLibraryW
LoadLibraryW
lstrcmpiW
CreateFileW
GetProcessHeap

Sections

.hgvf
Size: 33KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.mcbj
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pvdf
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dwvd
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.beuq
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gygr
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mvhr
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.xxsp
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gcsx
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ptie
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f2c2500def6aee875ef8cae81d6eab3d

Headers

File Characteristics

Imports

kernel32

Sections

.hgvf Size: 33KB - Virtual size: 100KB

.mcbj Size: 1024B - Virtual size: 4KB

.pvdf Size: 512B - Virtual size: 4KB

.dwvd Size: 512B - Virtual size: 4KB

.beuq Size: 3KB - Virtual size: 4KB

.gygr Size: 512B - Virtual size: 4KB

.mvhr Size: 3KB - Virtual size: 3KB

.xxsp Size: 512B - Virtual size: 16B

.gcsx Size: 1024B - Virtual size: 4KB

.ptie Size: 1024B - Virtual size: 4KB

.hgvf
Size: 33KB - Virtual size: 100KB

.mcbj
Size: 1024B - Virtual size: 4KB

.pvdf
Size: 512B - Virtual size: 4KB

.dwvd
Size: 512B - Virtual size: 4KB

.beuq
Size: 3KB - Virtual size: 4KB

.gygr
Size: 512B - Virtual size: 4KB

.mvhr
Size: 3KB - Virtual size: 3KB

.xxsp
Size: 512B - Virtual size: 16B

.gcsx
Size: 1024B - Virtual size: 4KB

.ptie
Size: 1024B - Virtual size: 4KB