2a177e45a7bf5d3fe1effd88c1b84de0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2a177e45a7bf5d3fe1effd88c1b84de0_JaffaCakes118
Size

551KB
MD5

2a177e45a7bf5d3fe1effd88c1b84de0
SHA1

8129c3c5cfbb413cf442dd7e476c738e1858d2c0
SHA256

235b36d75007f3be76304f0b80a838ed9ed3f38abd623a6d9ef4a879a94c4f58
SHA512

371109505151d6a450e978ba120c29047d14226feb610b0863ac290ad9b384512e9c436c59f1f89ec2833e4403f6f0d47bff072e7edff517a9af8db7315bf7a4
SSDEEP

12288:6A3DXunGUWUyXSQg0SNoV0IQNuNGBY4PQ4F8/5:6ATXGkUyXVTeMQNu8BY4PQ4a/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a177e45a7bf5d3fe1effd88c1b84de0_JaffaCakes118

Files

2a177e45a7bf5d3fe1effd88c1b84de0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d869ef237e850f04b9d9e06b4046eb8a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

InterlockedDecrement
WideCharToMultiByte
QueryPerformanceCounter
VirtualAlloc
ReadFile
TlsGetValue
InterlockedExchange
GetTickCount
SetStdHandle
GetLocaleInfoW
GetOEMCP
LCMapStringA
GetFileAttributesA
TlsSetValue
GetACP
GetTimeFormatA
IsValidCodePage
GetProcAddress
EnterCriticalSection
GetCommandLineW
LocalSize
SetConsoleCtrlHandler
GetStringTypeW
TlsAlloc
GetConsoleCP
CloseHandle
LCMapStringW
GetStringTypeA
GetCPInfo
IsValidLocale
InitializeCriticalSectionAndSpinCount
LoadLibraryA
SetUnhandledExceptionFilter
DeleteCriticalSection
HeapSize
TerminateProcess
EnumSystemLocalesA
HeapFree
CreateToolhelp32Snapshot
SetFilePointer
GetLastError
VirtualQuery
SetEnvironmentVariableA
VirtualFree
ExitProcess
CreateMutexA
GetCurrentThreadId
CompareStringW
LocalAlloc
GetConsoleMode
GetCurrentProcessId
FlushFileBuffers
CompareStringA
FreeLibrary
GetStartupInfoW
TlsFree
GetTimeZoneInformation
CreateFileA
MultiByteToWideChar
GetStartupInfoA
GetModuleFileNameW
Sleep
GetLocaleInfoA
WriteFile
LeaveCriticalSection
UnhandledExceptionFilter
SetHandleCount
GetCurrentProcess
OpenMutexA
GetFileType
GetCurrentThread
GetStdHandle
GetDateFormatA
HeapAlloc
WaitForSingleObject
GetSystemTimeAsFileTime
GetConsoleOutputCP
InterlockedIncrement
GetEnvironmentStringsW
GetModuleHandleW
HeapCreate
HeapReAlloc
SetLastError
GetProcessShutdownParameters
WriteConsoleW
RtlUnwind
IsDebuggerPresent
GetModuleFileNameA
HeapDestroy
lstrcmpi
FreeEnvironmentStringsW
GetUserDefaultLCID
WriteConsoleA
GetModuleHandleA
GetCommandLineA

user32

CreateDialogParamW
IsCharLowerA
GetMenuBarInfo
SetSystemCursor
CheckRadioButton
SetDlgItemInt
WINNLSGetEnableStatus
UnloadKeyboardLayout
GetDCEx
SetUserObjectInformationW
CreateDialogIndirectParamW
EnumWindows
GetCursorPos
MessageBoxIndirectW
DeferWindowPos
EndMenu
GetProcessWindowStation
RegisterClassA
RegisterClassExA
GetMenuStringA
GetPropW

Sections

.text
Size: 216KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 318KB - Virtual size: 317KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d869ef237e850f04b9d9e06b4046eb8a

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 216KB - Virtual size: 216KB

.rdata Size: 9KB - Virtual size: 23KB

.data Size: 318KB - Virtual size: 317KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 216KB - Virtual size: 216KB

.rdata
Size: 9KB - Virtual size: 23KB

.data
Size: 318KB - Virtual size: 317KB

.rsrc
Size: 6KB - Virtual size: 6KB