26ea54dec62da54084d412668f0a9f7a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

26ea54dec62da54084d412668f0a9f7a_JaffaCakes118
Size

519KB
MD5

26ea54dec62da54084d412668f0a9f7a
SHA1

63ddf310338f2a1c310af22b2ddbc5f0f5177c42
SHA256

0bc6654bacdf067355fb529fa3815b132c487913fc75b17b7b032535bf82ed5e
SHA512

d8f3226bde44172ac7ccb42bbe752e74409462a89a1281c8f3fe08f4fed30bd6231b0bd26db8fed0d3c9c5f7ecedeb1784f082f77a51930f7bcbc932bb55055d
SSDEEP

12288:Sq+np4F51mS/1Ll8zD98QgBVnMb2a3BkIYmWk6VFKhmr9Qa:+AZLl8CN5O+XmV6VFKhm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26ea54dec62da54084d412668f0a9f7a_JaffaCakes118

Files

26ea54dec62da54084d412668f0a9f7a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

318acde1dd38cb946e908ef6bea4065c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowWindow
DialogBoxParamA
RegisterClassExA
SetUserObjectSecurity
GetMenuState
EndTask
LoadCursorFromFileW
MessageBoxA
PackDDElParam
RegisterClassA
GetDlgItemTextA
GetNextDlgGroupItem
TranslateMDISysAccel
EndPaint
ClientToScreen
CreateWindowExW
MoveWindow
CreateDialogIndirectParamW
DdeAbandonTransaction
SetDoubleClickTime

comctl32

InitCommonControlsEx

kernel32

InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
SetConsoleCtrlHandler
SetEnvironmentVariableA
GetModuleFileNameA
InterlockedExchange
GetCurrentProcess
GetFileType
UnhandledExceptionFilter
LeaveCriticalSection
CompareStringA
WideCharToMultiByte
CompareStringW
GetModuleFileNameW
QueryPerformanceCounter
DeleteCriticalSection
GetProcAddress
IsValidLocale
GetCurrentProcessId
InterlockedIncrement
EnterCriticalSection
GetLocaleInfoA
HeapReAlloc
SetLastError
VirtualQuery
OpenWaitableTimerA
LCMapStringW
GetLastError
TlsAlloc
GetConsoleCP
OpenMutexA
EnumSystemLocalesA
GetConsoleMode
HeapFree
GetStringTypeW
CloseHandle
GetModuleHandleW
GetStdHandle
IsDebuggerPresent
SetHandleCount
CreateMutexA
FreeLibrary
GetCommandLineA
VirtualFree
GetSystemTimeAsFileTime
ExitProcess
GetCPInfo
VirtualAlloc
WriteConsoleA
HeapSize
ReadFile
GetCurrentThread
GetModuleHandleA
TlsSetValue
LoadLibraryA
HeapCreate
WriteConsoleW
HeapAlloc
FlushFileBuffers
GetDateFormatA
HeapDestroy
GetEnvironmentStringsW
LCMapStringA
TlsFree
GetCommandLineW
GetLocaleInfoW
MultiByteToWideChar
InterlockedDecrement
Sleep
GetTimeZoneInformation
GetCurrentThreadId
RtlUnwind
GetTimeFormatA
GetStartupInfoA
CreateFileA
IsValidCodePage
FreeEnvironmentStringsW
GetOEMCP
GetStartupInfoW
SetStdHandle
WriteFile
TerminateProcess
GetStringTypeA
GetTickCount
GetThreadContext
GetACP
GetUserDefaultLangID
GetUserDefaultLCID
SetFilePointer
GetConsoleOutputCP
TlsGetValue

Sections

.text
Size: 310KB - Virtual size: 309KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 75KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

318acde1dd38cb946e908ef6bea4065c

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 310KB - Virtual size: 309KB

.rdata Size: 75KB - Virtual size: 85KB

.data Size: 114KB - Virtual size: 114KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 310KB - Virtual size: 309KB

.rdata
Size: 75KB - Virtual size: 85KB

.data
Size: 114KB - Virtual size: 114KB

.rsrc
Size: 18KB - Virtual size: 18KB