2e804377df15f2de7b0f14e1fe832d3c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2e804377df15f2de7b0f14e1fe832d3c_JaffaCakes118
Size

177KB
MD5

2e804377df15f2de7b0f14e1fe832d3c
SHA1

acedf72ac554f9d256cf5be4288e5d0000cab80b
SHA256

05560c37c5d1c6b476c4fafec6a7fd7ae172baf6b54698d3a3c48afd73516532
SHA512

c26cf07f51b8f5e1cbdfbfb574afa7e177ee9845750948772f57bd7f95da75398966d9cbbca2b57fb6546b2ea7a04813efd63dd50453c0082bc36daae5e5e5ae
SSDEEP

3072:5XWCLvczk4KrxdvNeN/VH8PyLS2lCl1obo36HVZODaKaBj:MCLvl9Rmp8q+2luY46Hoa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e804377df15f2de7b0f14e1fe832d3c_JaffaCakes118

Files

2e804377df15f2de7b0f14e1fe832d3c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

504b832a8e076484407cf8ad67d471dc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

inet_addr
connect
WSACleanup
WSAStartup
socket
setsockopt
ioctlsocket
htons
bind
listen
send
select
__WSAFDIsSet
accept
recv
closesocket

kernel32

SetFileAttributesA
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
Sleep
GetLastError
CreateThread
GetModuleFileNameA
ExitThread
LeaveCriticalSection
EnterCriticalSection
GetTickCount
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
MultiByteToWideChar
ReadFile
CloseHandle
WriteFile
TransactNamedPipe
CreateFileA
GetTimeFormatA
GetDateFormatA
GetFileSize
GetFileAttributesA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FindNextFileA
FindFirstFileA
SetFilePointer
QueryPerformanceCounter
QueryPerformanceFrequency
GetLocalTime
GetSystemDirectoryA
ExitProcess
CreateProcessA
LoadLibraryA
GetProcAddress
GetModuleHandleA
FormatMessageA
GlobalUnlock
GlobalLock
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
SetFileTime
GetFileTime
ExpandEnvironmentStringsA
GetTempPathA
WideCharToMultiByte
GetComputerNameA
GetCurrentProcess
TerminateProcess
OpenProcess
DeleteFileA
GetCurrentProcessId
CopyFileA
WaitForSingleObject
CreateMutexA
TerminateThread
MoveFileA
GetExitCodeProcess
PeekNamedPipe
DuplicateHandle
CreatePipe
SetConsoleCtrlHandler
GetLocaleInfoA
GetVersionExA
GetLogicalDrives
WaitForMultipleObjects
GenerateConsoleCtrlEvent
GlobalMemoryStatus
HeapAlloc
HeapFree
GetTimeZoneInformation
GetSystemTime
HeapReAlloc
GetStartupInfoA
GetCommandLineA
GetVersion
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
LCMapStringA
LCMapStringW
GetCPInfo
GetACP
GetOEMCP
UnhandledExceptionFilter

Sections

.text
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

504b832a8e076484407cf8ad67d471dc

Headers

File Characteristics

Imports

ws2_32

kernel32

Sections

.text Size: 116KB - Virtual size: 116KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 54KB - Virtual size: 1.1MB

.text
Size: 116KB - Virtual size: 116KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 54KB - Virtual size: 1.1MB