286fe4204fbffa702aa8bc0ab6a090b0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

286fe4204fbffa702aa8bc0ab6a090b0_JaffaCakes118
Size

1.6MB
MD5

286fe4204fbffa702aa8bc0ab6a090b0
SHA1

fd27ea5d20e84755a5b17ab7024484ab7bff3d38
SHA256

7170b4c0112f2392e38ed2ef2b482c428c7d669d4b470b9244f824cf7dde6744
SHA512

7dcea1f957c483a91f1e3630cdb59a52dd937664bb2499b374d53334f86e248d152437cd25558af8a9f71acccdb8a56a05de4d6a8dff10e72032eaec2fe867bf
SSDEEP

49152:piUl23KOPHb2DA1k4SLuTI2yYmWJwzEditGVavKYYZMb:p67oA1k4Sydy2wzgitGVDZM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
286fe4204fbffa702aa8bc0ab6a090b0_JaffaCakes118

Files

286fe4204fbffa702aa8bc0ab6a090b0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

295936347f947e28948f86a58cf01e0e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx
ImageList_GetImageRect
ImageList_LoadImage
ImageList_SetOverlayImage
InitMUILanguage
DestroyPropertySheetPage
ImageList_SetIconSize
CreateUpDownControl

user32

RegisterClassExA
RegisterClassA
GetPropW
CloseDesktop
OemToCharW
GetAncestor
MessageBoxExA
AdjustWindowRectEx
MessageBoxExW
IsIconic
wsprintfW
DdeSetUserHandle
GetFocus
DefDlgProcA
SetMenuItemInfoW
RegisterClipboardFormatW

kernel32

QueryPerformanceCounter
GetEnvironmentStringsW
IsDebuggerPresent
SystemTimeToFileTime
GetDateFormatA
GetModuleFileNameW
GetCurrentThreadId
WriteFile
HeapReAlloc
TlsSetValue
GetStringTypeA
OpenMutexA
GetLastError
InitializeCriticalSection
CreateMutexA
SetThreadLocale
GetFileType
GetSystemTime
GetStringTypeW
TlsAlloc
GetStdHandle
OutputDebugStringA
HeapFree
TlsGetValue
InterlockedExchange
SetLastError
GetDiskFreeSpaceExW
CompareFileTime
GetModuleFileNameA
GetEnvironmentStrings
GetLocalTime
GetStartupInfoA
FlushFileBuffers
FreeEnvironmentStringsW
LCMapStringW
InterlockedDecrement
FindResourceExW
FindNextFileW
GetTimeZoneInformation
SetFilePointer
InterlockedExchangeAdd
GetModuleHandleA
GetSystemTimeAsFileTime
GetCommandLineA
AddAtomA
TerminateProcess
ReadFile
HeapDestroy
GetCPInfo
LoadLibraryA
VirtualFree
EnumDateFormatsW
GetFileAttributesExW
GetFileAttributesExA
SetEnvironmentVariableA
CompareStringA
VirtualQuery
RtlUnwind
UnhandledExceptionFilter
MultiByteToWideChar
TlsFree
SetConsoleCursorInfo
GetVersion
GetCurrentThread
ReadConsoleOutputAttribute
GetTickCount
GetCurrentProcess
CompareStringW
ExitProcess
InterlockedIncrement
GetStartupInfoW
CloseHandle
DeleteCriticalSection
GetCurrentProcessId
LCMapStringA
SetStdHandle
CreateMutexW
HeapCreate
GetCommandLineW
GetProcAddress
WideCharToMultiByte
FreeEnvironmentStringsA
LocalFree
IsBadWritePtr
LeaveCriticalSection
EnterCriticalSection
SetHandleCount
EnumCalendarInfoExW
VirtualAlloc
HeapAlloc

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 246KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

295936347f947e28948f86a58cf01e0e

Headers

File Characteristics

Imports

comctl32

user32

kernel32

Sections

.text Size: 114KB - Virtual size: 113KB

.rdata Size: 246KB - Virtual size: 258KB

.data Size: 1.2MB - Virtual size: 1.2MB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 114KB - Virtual size: 113KB

.rdata
Size: 246KB - Virtual size: 258KB

.data
Size: 1.2MB - Virtual size: 1.2MB

.rsrc
Size: 18KB - Virtual size: 18KB