07555a5edc2b215f9d9254643b65c06e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

07555a5edc2b215f9d9254643b65c06e_JaffaCakes118
Size

155KB
MD5

07555a5edc2b215f9d9254643b65c06e
SHA1

9eb486a27a1742a0266046f02b864928694f131a
SHA256

147dec47a33438ff7cb68e1e3234bd318919dd61df26e33d6911afd8578dd907
SHA512

6732c6a7ebedf01aceef29e447c78bfe560b64a9d7ddc8b98e1bc1b485afec48fdfa318fa80bfe65ba4b1f3af00b09de6049e46b3b50a8308c2f07783c168c7a
SSDEEP

1536:BelWt/pFPzqxk3fVP0mRcYERweuKWb1S7AhVBV:klm/rX3fVPZRCKeNWb1ZhVP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07555a5edc2b215f9d9254643b65c06e_JaffaCakes118

Files

07555a5edc2b215f9d9254643b65c06e_JaffaCakes118
.exe windows:1 windows x86 arch:x86

7ddc8f2cf9860f5ca3461a8ea09b92da

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
InterlockedDecrement
WideCharToMultiByte
HeapDestroy
UnhandledExceptionFilter
GetStartupInfoA
CloseHandle
GetModuleHandleA
SetUnhandledExceptionFilter
GetModuleHandleW
LocalFree
GetVersionExA
InterlockedDecrement
SetLastError
WaitForSingleObject
GetProcAddress
CreateThread
WaitForSingleObject
HeapReAlloc
GetStartupInfoA
GetModuleFileNameA
EnterCriticalSection
FreeLibrary
CreateThread
SetLastError
WriteFile
GetModuleHandleW
CreateFileW
InterlockedDecrement
HeapFree
DeleteCriticalSection
InterlockedIncrement
LoadLibraryA
FormatMessageW
SetUnhandledExceptionFilter
FreeLibrary
WriteFile
CloseHandle
LoadLibraryW
VirtualFree
CreateThread
GetSystemTimeAsFileTime
FormatMessageW
FreeLibrary
QueryPerformanceCounter
LoadLibraryA
GetCurrentProcess
GetModuleFileNameA
InterlockedDecrement
WideCharToMultiByte
GetModuleFileNameA
TerminateProcess
GetTickCount
GetACP
CreateThread
EnterCriticalSection
lstrcpyW
SetFilePointer
GetACP
GetProcAddress
GetStartupInfoW
SetEvent
lstrcpyW
GetModuleHandleW
EnterCriticalSection
TerminateProcess
GetModuleHandleW
SetEvent
MultiByteToWideChar
ExitProcess
TerminateProcess
SetUnhandledExceptionFilter
CreateThread
GetVersionExA
SetFilePointer
CloseHandle
SetLastError
InterlockedDecrement
GetCurrentProcess
DeleteCriticalSection
lstrcpyW
ReadFile
EnterCriticalSection
FreeLibrary
LoadLibraryA
LoadLibraryW
VirtualFree
lstrcmpiW
SetFilePointer
HeapDestroy
GetTickCount
LeaveCriticalSection
GetCommandLineW
GetStartupInfoA
GetProcessHeap
GetCommandLineW
GetCommandLineW
GetLastError
MultiByteToWideChar
TerminateProcess
WriteFile
FormatMessageW
GetStartupInfoA
HeapReAlloc
InterlockedIncrement
GetCurrentProcess
QueryPerformanceCounter
InterlockedDecrement
GetACP
UnhandledExceptionFilter
SetEvent
GetCurrentProcess
HeapFree
InterlockedDecrement
Sleep
InterlockedIncrement
lstrcpyW
InterlockedDecrement
EnterCriticalSection
HeapFree
FreeLibrary
VirtualFree
HeapFree
LocalFree
GetModuleHandleA
MultiByteToWideChar
LeaveCriticalSection
TerminateProcess
ReadFile
GetACP
GetCurrentProcess
LocalFree
LoadLibraryA
LeaveCriticalSection
EnterCriticalSection
ExitProcess
FormatMessageW
lstrlenW
SetFilePointer
VirtualAlloc
WaitForSingleObject
CreateThread
HeapDestroy
InitializeCriticalSection
GetACP
GetCommandLineA
InitializeCriticalSection
GetProcAddress
GetCommandLineA
GetCommandLineW
GetVersionExA
WriteFile
SetUnhandledExceptionFilter
InitializeCriticalSection
GetModuleHandleW
WaitForSingleObject
UnhandledExceptionFilter
LoadLibraryA
EnterCriticalSection
GetModuleFileNameA
SetEvent
InitializeCriticalSection
CreateFileW
MultiByteToWideChar
lstrcpyW
GetTickCount
ReadFile
WideCharToMultiByte
HeapFree
GetStartupInfoW
SetLastError
MultiByteToWideChar
InitializeCriticalSection
QueryPerformanceCounter
GetModuleHandleA
LoadLibraryA
FormatMessageW
CreateFileW
ReadFile
InterlockedIncrement
InterlockedDecrement
GetCommandLineA
GetStartupInfoW

Sections

.test
Size: 139KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.test
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.test
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.test
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7ddc8f2cf9860f5ca3461a8ea09b92da

Headers

File Characteristics

Imports

kernel32

Sections

.test Size: 139KB - Virtual size: 164KB

.test Size: 1024B - Virtual size: 4KB

.test Size: 512B - Virtual size: 4KB

.test Size: 1KB - Virtual size: 4KB

.test Size: 5KB - Virtual size: 8KB

.test Size: 512B - Virtual size: 4KB

.test Size: 512B - Virtual size: 4KB

.test Size: 2KB - Virtual size: 2KB

.test Size: 512B - Virtual size: 12B

.test Size: 512B - Virtual size: 4KB

.test Size: 512B - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 4KB

.test Size: 1024B - Virtual size: 4KB

.test Size: 512B - Virtual size: 4KB

.test
Size: 139KB - Virtual size: 164KB

.test
Size: 1024B - Virtual size: 4KB

.test
Size: 512B - Virtual size: 4KB

.test
Size: 1KB - Virtual size: 4KB

.test
Size: 5KB - Virtual size: 8KB

.test
Size: 512B - Virtual size: 4KB

.test
Size: 512B - Virtual size: 4KB

.test
Size: 2KB - Virtual size: 2KB

.test
Size: 512B - Virtual size: 12B

.test
Size: 512B - Virtual size: 4KB

.test
Size: 512B - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 4KB

.test
Size: 1024B - Virtual size: 4KB

.test
Size: 512B - Virtual size: 4KB