2bb23ee91f17ac5a94e5ec4bc6f968bd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2bb23ee91f17ac5a94e5ec4bc6f968bd_JaffaCakes118
Size

504KB
MD5

2bb23ee91f17ac5a94e5ec4bc6f968bd
SHA1

a1e8e0ff4c3f58a55e738d87d26b63bd36ee773d
SHA256

919d33fd3fa0972ded99fbd0e8aedf43eee47ae44403ceb3d67294cae72e21b7
SHA512

228b6939d54dcfcc57b5dfd5d9670ddb4a131e354995333a29ea534d84c5ef32cf3f2c03b0e676ca3cb22d55f0e0d48ba3f380f1fabbc89caa69a945b7e20b19
SSDEEP

6144:n5z1Yp9CdfvG0gTwg+HYEO02xesfrpCO/VHo1Q1k4dFuZE7HvcjlNdi3K14jqqDQ:n3eFqHG0fAPdFuZE6lXhqt6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2bb23ee91f17ac5a94e5ec4bc6f968bd_JaffaCakes118

Files

2bb23ee91f17ac5a94e5ec4bc6f968bd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

299bc6a375d13c79bb2751b79681c69f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToDosDateTime
FileTimeToSystemTime
FileTimeToLocalFileTime
AreFileApisANSI
GetCommandLineW
SetFileApisToOEM
GetLastError
lstrcatA
lstrlenA
MultiByteToWideChar
WideCharToMultiByte
CompareStringA
CompareStringW
LoadLibraryA
GetModuleFileNameA
LocalFree
FormatMessageA
FormatMessageW
SetFileAttributesA
SetFileAttributesW
RemoveDirectoryA
RemoveDirectoryW
MoveFileA
MoveFileW
CreateDirectoryA
CreateDirectoryW
DeleteFileA
DeleteFileW
GetFullPathNameA
GetFullPathNameW
SearchPathA
SearchPathW
GetTempPathA
GetTempPathW
GetTempFileNameA
GetTempFileNameW
FindClose
FindFirstFileA
FindFirstFileW
SetLastError
FindNextFileA
FindNextFileW
CreateFileA
CreateFileW
CloseHandle
GetFileSize
SetFilePointer
ReadFile
SetFileTime
WriteFile
SetEndOfFile
CompareFileTime
CreateEventA
WaitForSingleObject
SetEvent
LeaveCriticalSection
EnterCriticalSection
ResetEvent
WaitForMultipleObjects
VirtualFree
VirtualAlloc
CreateThread
DeleteCriticalSection
InitializeCriticalSection
LocalFileTimeToFileTime
DosDateTimeToFileTime
SetConsoleCtrlHandler
GetTickCount
TlsGetValue
TlsAlloc
GetOEMCP
GetACP
GetCPInfo
SetStdHandle
LCMapStringA
IsBadCodePtr
IsBadReadPtr
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
RaiseException
RtlUnwind
HeapAlloc
HeapFree
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
SetUnhandledExceptionFilter
GetCurrentThreadId
TlsSetValue
LCMapStringW
GetStringTypeW
InterlockedIncrement
HeapReAlloc
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
InterlockedDecrement
HeapCreate
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
IsBadWritePtr
GetProcAddress
FlushFileBuffers
GetStringTypeA

user32

CharUpperA
CharPrevExA
CharPrevA
CharUpperW
CharNextA
wsprintfA

ole32

CoInitialize
CoUninitialize

oleaut32

VariantCopy
VariantClear
SysStringByteLen
SysAllocStringByteLen
SysAllocString
SysFreeString

Sections

.text
Size: 388KB - Virtual size: 388KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 976B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

299bc6a375d13c79bb2751b79681c69f

Headers

File Characteristics

Imports

kernel32

user32

ole32

oleaut32

Sections

.text Size: 388KB - Virtual size: 388KB

.rdata Size: 43KB - Virtual size: 43KB

.data Size: 56KB - Virtual size: 56KB

.rsrc Size: 976B - Virtual size: 976B

.text
Size: 388KB - Virtual size: 388KB

.rdata
Size: 43KB - Virtual size: 43KB

.data
Size: 56KB - Virtual size: 56KB

.rsrc
Size: 976B - Virtual size: 976B