22715f19fcce7ea37d4d5aabd3cbd425_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

22715f19fcce7ea37d4d5aabd3cbd425_JaffaCakes118
Size

124KB
MD5

22715f19fcce7ea37d4d5aabd3cbd425
SHA1

939c128ce231507872c77839e355a47393ea73d1
SHA256

fc50dae85a59d58b89d132d03d85073e5981a7d42f6f175bb71ecd8be632ea32
SHA512

53a8ea35ed482b5d167db51b69a83209ac3bdc183f916bbeac1d87aa259f14250abf367d380e2b6483089f77f1e631705480ca6ff448e656fe5c69a4080a358d
SSDEEP

1536:aEgUlyg9Z/xBagzV7sul/gb955I0ux8i//GtCMyXsvJotuaoddQX7RSTW:Vblyg9PB5m5aDbbXsvJotuF/EL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22715f19fcce7ea37d4d5aabd3cbd425_JaffaCakes118

Files

22715f19fcce7ea37d4d5aabd3cbd425_JaffaCakes118
.exe windows:4 windows x86 arch:x86

783cfb429d677c3748d342e5b2d7a14b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

GetProcessHeap
CompareStringW
CompareStringA
FlushFileBuffers
RemoveDirectoryA
DeleteFileA
WritePrivateProfileStringA
GetWindowsDirectoryA
GetTempPathA
GetModuleFileNameA
GlobalFree
CloseHandle
CreateFileA
FindFirstFileA
WriteFile
ReadFile
GlobalAlloc
GetFileSize
FreeLibrary
GlobalUnlock
GlobalSize
GlobalLock
GetProcAddress
LoadLibraryA
WideCharToMultiByte
GetSystemDirectoryA
VirtualAlloc
VirtualFree
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
SetFilePointer
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
InitializeCriticalSection
GetTimeZoneInformation
HeapReAlloc
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetLastError
FindNextFileA
GetDriveTypeA
GetFullPathNameA
GetLocalTime
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
RtlUnwind
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
CreateDirectoryA
GetStartupInfoA
RaiseException
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
Sleep
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapSize
ExitProcess
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
QueryPerformanceCounter

user32

wsprintfA
UpdateWindow
SetWindowPos
SetWindowLongA
LoadIconA
DestroyWindow
ShowCursor
LoadCursorA
SetCursor
MessageBoxA
RegisterClassA
CreateWindowExA
ShowWindow
PostQuitMessage
DefWindowProcA

ole32

CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

VariantInit
VariantClear
SysStringLen

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

783cfb429d677c3748d342e5b2d7a14b

Headers

File Characteristics

Imports

version

kernel32

user32

ole32

oleaut32

Sections

.text Size: 80KB - Virtual size: 79KB

.rdata Size: 16KB - Virtual size: 14KB

.data Size: 8KB - Virtual size: 14KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 80KB - Virtual size: 79KB

.rdata
Size: 16KB - Virtual size: 14KB

.data
Size: 8KB - Virtual size: 14KB

.rsrc
Size: 16KB - Virtual size: 12KB