2847540693cf06d9a46fd17d6cef4fda_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2847540693cf06d9a46fd17d6cef4fda_JaffaCakes118
Size

352KB
MD5

2847540693cf06d9a46fd17d6cef4fda
SHA1

9685198c85027e4f0a7cdd35f0f9c2d77170205c
SHA256

8443c0abbe2cbab04acd73a1e7c6a0bd49799ce3b3d16ff546e6bc069e0ceb22
SHA512

133446ae744abb4ab552af2932509aea6e7ebdd54f7b80a9945b30451af448711de9a5000e30ea283cd0b766e1007bce9539218881a3f7f15cd0c1a20a719639
SSDEEP

6144:MLY2AQtf0dO2Byxk4cSUl9CLITWAd6ECaQbGXnJV6gSDpIdbHkYItLZ:MQXlBY6SKIL2R6Ef/n2gSlIdbHkZZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2847540693cf06d9a46fd17d6cef4fda_JaffaCakes118

Files

2847540693cf06d9a46fd17d6cef4fda_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fe014e2104ee53994ae107c2438a1ca4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
Sleep
VirtualFree
FindResourceW
HeapCreate
WideCharToMultiByte
SizeofResource
GetCurrentThreadId
GetACP
CloseHandle
FindFirstFileA
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
HeapSize
GetCurrentDirectoryA
GetCommandLineW
GetCurrentProcessId
GetEnvironmentStrings
FileTimeToLocalFileTime
lstrlenW
GlobalAlloc
GetEnvironmentStringsW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
LCMapStringW
GetLastError
InterlockedIncrement
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GlobalLock
DuplicateHandle
FindFirstFileW
CreateFileMappingA
ResetEvent
FindNextFileW
CompareStringW
GetProcAddress
SetEvent
DeleteFileA
GetFileSize
GetStartupInfoA
FreeLibrary
LoadLibraryA
FlushFileBuffers
GetTickCount
QueryPerformanceCounter
GetOEMCP
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
LeaveCriticalSection
GetVersion
SetEndOfFile
VirtualQuery
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
CreateMutexA
MultiByteToWideChar
TlsGetValue
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
ExitProcess
IsDebuggerPresent
GetModuleFileNameW
InitializeCriticalSection
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
GetEnvironmentVariableA
LocalFree
GetExitCodeProcess
GetStringTypeW
HeapReAlloc
GetCommandLineA
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
GetCPInfo
SetStdHandle
FreeEnvironmentStringsW
SetErrorMode
ExpandEnvironmentStringsA
LocalAlloc
GetLocaleInfoA
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetLocalTime
GetFileAttributesW
HeapDestroy
LockResource
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetProcessHeap

user32

DefWindowProcA
BeginPaint
SetFocus
EndPaint
SetTimer
GetSubMenu
RegisterClassA
EnableMenuItem
TranslateMessage
GetSystemMetrics
ShowWindow
GetParent
DestroyWindow
GetCursorPos
GetDC
IsWindow
LoadBitmapA
PostQuitMessage
MapWindowPoints
GetWindowRect
PostMessageA
ReleaseCapture
SetWindowLongA
EndDialog
SetWindowTextA
GetWindowLongA
GetDlgItem
ScreenToClient
GetDesktopWindow
MoveWindow
MessageBoxA
GetFocus
wsprintfA
InvalidateRect
SendMessageA
EnableWindow
SetCursor

msvcrt

_strcmpi
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_XcptFilter
exit
_exit
free
_controlfp

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 320KB - Virtual size: 319KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe014e2104ee53994ae107c2438a1ca4

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 8KB - Virtual size: 5KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 320KB - Virtual size: 319KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 8KB - Virtual size: 5KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 320KB - Virtual size: 319KB

.rsrc
Size: 4KB - Virtual size: 3KB