22d51f31f8ce5ba93e269c2959a49052_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

22d51f31f8ce5ba93e269c2959a49052_JaffaCakes118
Size

222KB
MD5

22d51f31f8ce5ba93e269c2959a49052
SHA1

9c4a99a1ea3bbe6e7af4e067c7c126796681d41e
SHA256

3b470d79749aedec557d55d05e977cd8fdec8142123d6fa4913c19a8fdf36b0b
SHA512

81ae2b7ec2241724d15a3c560b37e0e7346bd530b94c00461b21e2232b254fe6b8cc24309c4093850d52be8651ec5c331340da93ce2126fe0608f227ab3f5711
SSDEEP

1536:MnUEcOXaksAFrAm3T0sXaY8XLb0I8OZOLIWuWnlqt+1h6:wvcOXa7AWMosXxW/803W8Sh6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22d51f31f8ce5ba93e269c2959a49052_JaffaCakes118

Files

22d51f31f8ce5ba93e269c2959a49052_JaffaCakes118
.exe windows:1 windows x86 arch:x86

aee3a2dc95ca2d9192f09c68605e3e4d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSection
Sleep
UnhandledExceptionFilter
lstrcpyW
CreateFileW
HeapFree
CloseHandle
GetSystemTimeAsFileTime
GetStartupInfoA
GetProcessHeap
GetModuleHandleA
FormatMessageW
GetCurrentThreadId
GetModuleFileNameA
LocalFree
MultiByteToWideChar
GetStartupInfoA
HeapDestroy
lstrcmpiW
ReadFile
LoadLibraryA
GetProcAddress
LoadLibraryA
VirtualFree
lstrlenW
UnhandledExceptionFilter
CreateThread
LeaveCriticalSection
GetModuleFileNameA
GetProcAddress
lstrcpyW
Sleep
LoadLibraryW
VirtualAlloc
SetLastError
MultiByteToWideChar
InitializeCriticalSection
GetCommandLineW
HeapFree
CloseHandle
SetEvent
WideCharToMultiByte
GetModuleFileNameA
HeapFree
FormatMessageW
HeapFree
GetProcAddress
GetVersionExA
GetCommandLineA
GetCommandLineW
EnterCriticalSection
GetCommandLineW
LoadLibraryA
lstrcmpiW
GetACP
TerminateProcess
UnhandledExceptionFilter
ReadFile
WriteFile
VirtualAlloc
GetModuleHandleW
TerminateProcess
GetStartupInfoW
QueryPerformanceCounter
EnterCriticalSection
GetSystemTimeAsFileTime
CreateFileW
GetProcessHeap
CloseHandle
Sleep
SetEvent
GetProcessHeap
GetModuleHandleW
GetModuleHandleA
GetCommandLineW
VirtualAlloc
lstrcpyW
UnhandledExceptionFilter
HeapDestroy
LeaveCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetEvent
CreateThread
QueryPerformanceCounter
WideCharToMultiByte
HeapDestroy
SetFilePointer
SetEvent
HeapAlloc
GetModuleHandleA
GetSystemTimeAsFileTime
DeleteCriticalSection
InterlockedIncrement
GetSystemTimeAsFileTime
GetStartupInfoA
VirtualFree
LoadLibraryA
GetStartupInfoA
FormatMessageW
WideCharToMultiByte
GetStartupInfoW
FreeLibrary
WideCharToMultiByte
GetStartupInfoA
SetUnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoA
GetStartupInfoA
GetModuleHandleW
CreateThread
GetACP
Sleep
GetCommandLineW
Sleep
LocalFree
HeapDestroy
Sleep
CreateFileW
SetLastError
ExitProcess
SetEvent
GetSystemTimeAsFileTime
EnterCriticalSection
LocalAlloc
GetLastError
InterlockedIncrement
FreeLibrary
InitializeCriticalSection
ExitProcess
GetSystemTimeAsFileTime
lstrcpyW
LocalFree
HeapAlloc
LoadLibraryA
GetProcAddress
InterlockedIncrement
InterlockedDecrement
HeapFree
SetFilePointer
HeapAlloc
EnterCriticalSection
GetLastError
SetFilePointer
SetLastError
DeleteCriticalSection
lstrcmpiW
CreateThread
GetModuleHandleW
HeapAlloc
HeapReAlloc
ReadFile
InterlockedDecrement
VirtualFree
WriteFile
lstrcmpiW
WriteFile
GetModuleHandleA
InitializeCriticalSection
HeapAlloc
GetModuleHandleW
GetVersionExA
LocalFree
GetCommandLineA
UnhandledExceptionFilter
CreateFileW
DeleteCriticalSection
FreeLibrary
CloseHandle
GetProcessHeap
TerminateProcess
GetProcessHeap
WideCharToMultiByte
GetProcAddress
GetProcessHeap
ReadFile
HeapReAlloc
SetUnhandledExceptionFilter
QueryPerformanceCounter
SetEvent
FreeLibrary
GetModuleFileNameA
LocalAlloc
GetLastError
LocalAlloc
lstrcpyW
CloseHandle
HeapDestroy
GetCommandLineA
InterlockedIncrement
HeapAlloc
GetVersionExA
DeleteCriticalSection
LeaveCriticalSection
GetCurrentThreadId
SetLastError
SetUnhandledExceptionFilter
HeapDestroy
GetCommandLineA
LoadLibraryA
UnhandledExceptionFilter
GetSystemTimeAsFileTime
VirtualFree
GetVersionExA
GetModuleHandleA
GetModuleFileNameA
LocalAlloc
WideCharToMultiByte
CloseHandle
SetUnhandledExceptionFilter

Sections

�text
Size: 191KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

�idata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�vmp0
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

�reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

aee3a2dc95ca2d9192f09c68605e3e4d

Headers

File Characteristics

Imports

kernel32

Sections

�text Size: 191KB - Virtual size: 196KB

�idata Size: 5KB - Virtual size: 8KB

�idata Size: 2KB - Virtual size: 4KB

�idata Size: 3KB - Virtual size: 4KB

�vmp0 Size: 6KB - Virtual size: 6KB

.rsrc Size: 1024B - Virtual size: 4KB

�reloc Size: 1KB - Virtual size: 4KB

�reloc Size: 2KB - Virtual size: 4KB

�reloc Size: 3KB - Virtual size: 4KB

�reloc Size: 4KB - Virtual size: 4KB

�text
Size: 191KB - Virtual size: 196KB

�idata
Size: 5KB - Virtual size: 8KB

�idata
Size: 2KB - Virtual size: 4KB

�idata
Size: 3KB - Virtual size: 4KB

�vmp0
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 1024B - Virtual size: 4KB

�reloc
Size: 1KB - Virtual size: 4KB

�reloc
Size: 2KB - Virtual size: 4KB

�reloc
Size: 3KB - Virtual size: 4KB

�reloc
Size: 4KB - Virtual size: 4KB