2cb19dc371abd8598b3e5c94b5ed4529_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2cb19dc371abd8598b3e5c94b5ed4529_JaffaCakes118
Size

117KB
MD5

2cb19dc371abd8598b3e5c94b5ed4529
SHA1

2253acc901afa07be4712ee1ab96096bb77a6072
SHA256

33d80f620e3dbb99a78a6bda1ae4cb76630b43b3308c8a81cabc5de437e32640
SHA512

53e85b2546fc918d06b6e617d239eb14a86cf7fa034118f25a9ca7e7d5630461d09bde7289b21575e668da68bb365b66831dc99564e08fe0433a09ae90b5253c
SSDEEP

768:GZqRDF4mkWQfcwGHAfaodnpAHK+f2vV+dBxhvL4YhR4fbyXOoXrlE:GZmpQEjHKtn0zOd+dphR4onZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2cb19dc371abd8598b3e5c94b5ed4529_JaffaCakes118

Files

2cb19dc371abd8598b3e5c94b5ed4529_JaffaCakes118
.exe windows:1 windows x86 arch:x86

869c7895ea060fe008bd487fe5f515e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
ExitProcess
HeapFree
InterlockedDecrement
FreeLibrary
SetFilePointer
InterlockedIncrement
WideCharToMultiByte
VirtualAlloc
InitializeCriticalSection
WideCharToMultiByte
GetCurrentProcess
GetCommandLineA
FreeLibrary
SetEvent
GetStartupInfoW
GetACP
WideCharToMultiByte
LocalAlloc
CloseHandle
EnterCriticalSection
VirtualFree
LocalFree
SetLastError
DeleteCriticalSection
VirtualAlloc
FormatMessageW
GetProcessHeap
GetCurrentProcessId
QueryPerformanceCounter
CreateFileW
GetACP
LoadLibraryA
GetCurrentThreadId
GetLastError
LeaveCriticalSection
GetModuleHandleA
VirtualFree
GetLastError
GetCurrentProcess
VirtualAlloc
WriteFile
GetProcAddress
GetCurrentProcessId
GetCommandLineW
SetEvent
EnterCriticalSection
GetCurrentProcess
InterlockedDecrement
SetLastError
QueryPerformanceCounter
GetVersionExA
GetStartupInfoW
GetStartupInfoW
FormatMessageW
GetLastError
GetTickCount
InitializeCriticalSection
GetCurrentProcessId
EnterCriticalSection
CreateFileW
InterlockedDecrement
ExitProcess
Sleep
CloseHandle
InterlockedIncrement
LoadLibraryA
MultiByteToWideChar
InitializeCriticalSection
LeaveCriticalSection
FormatMessageW
Sleep
FreeLibrary
FormatMessageW
LoadLibraryA
GetModuleFileNameA
GetStartupInfoW
DeleteCriticalSection
VirtualAlloc
HeapDestroy
UnhandledExceptionFilter
WaitForSingleObject
FormatMessageW
MultiByteToWideChar
InitializeCriticalSection
QueryPerformanceCounter
WriteFile
GetCommandLineA
HeapDestroy
HeapAlloc
GetModuleHandleA
FormatMessageW
GetProcAddress
FormatMessageW
SetLastError
SetLastError
GetVersionExA
GetCommandLineW
CreateFileW
SetFilePointer
DeleteCriticalSection
HeapFree
GetTickCount
MultiByteToWideChar
lstrlenW
InterlockedDecrement
GetModuleHandleA
LocalFree
FormatMessageW
WideCharToMultiByte
FormatMessageW
GetStartupInfoA
LoadLibraryW
CloseHandle
GetSystemTimeAsFileTime
GetCurrentProcessId
LocalFree
CreateThread
InterlockedIncrement
HeapDestroy
GetCurrentProcess
CloseHandle
ReadFile
HeapAlloc
GetCurrentProcess

Sections

.data
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 512B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

869c7895ea060fe008bd487fe5f515e4

Headers

File Characteristics

Imports

kernel32

Sections

.data Size: 102KB - Virtual size: 120KB

.data Size: 2KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 8KB

.data Size: 512B - Virtual size: 4KB

.data Size: 2KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

Size: 512B - Virtual size: 512B

.data
Size: 102KB - Virtual size: 120KB

.data
Size: 2KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 8KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB