37bc09451db33fb15db3f033872899fe_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

37bc09451db33fb15db3f033872899fe_JaffaCakes118
Size

521KB
MD5

37bc09451db33fb15db3f033872899fe
SHA1

03c4c838dde8e7acd01f30ad487089e0d1cff729
SHA256

09b1147858f73579cf729385fbf77393ebc6f5603a0c7a7a40fdcebb573e5021
SHA512

07c746541756decc3898ea2b538826d48afb135ab48d6ec5b109d251266af72739e027e4fb9316d858b8f4d36e640f3861c82abcec2b6e94290e36d21704b9a8
SSDEEP

12288:vW/2DxHQpDejoZHQK3m0c9ckace2+6ifGH:vW/2a0oZwKW0c9aJ2+JGH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37bc09451db33fb15db3f033872899fe_JaffaCakes118

Files

37bc09451db33fb15db3f033872899fe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c0f053f2024bd6cb3d05ba9c1308b4d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

HeapDestroy
HeapReAlloc
CompareStringW
CreateFileA
GetEnvironmentStrings
GetStringTypeA
GetExitCodeThread
GetProcessHeap
GetLocaleInfoW
CloseHandle
GetTempPathW
lstrcmpA
TerminateProcess
GetProcAddress
GetTickCount
GetCPInfo
GetVolumeInformationW
GetConsoleOutputCP
SetEnvironmentVariableA
InterlockedExchange
CreateMutexA
ReadFile
GetModuleHandleA
InterlockedDecrement
InitializeCriticalSection
GetTimeFormatA
VirtualQuery
EnumSystemLocalesA
SetLastError
GetCurrentProcess
GetEnvironmentStringsW
GetLocaleInfoA
GetModuleFileNameA
ConnectNamedPipe
GetConsoleMode
FileTimeToSystemTime
WriteConsoleW
OpenMutexA
IsValidCodePage
QueryPerformanceCounter
GetStringTypeW
GetDateFormatA
HeapSize
GetStartupInfoA
GetEnvironmentVariableA
GetCurrentThreadId
SetHandleCount
VirtualAlloc
FreeEnvironmentStringsA
SetFilePointer
FlushFileBuffers
ExitProcess
GetCurrentProcessId
VirtualFree
WriteConsoleA
GetPrivateProfileStringW
EnterCriticalSection
DeleteCriticalSection
IsDebuggerPresent
GetCommandLineA
SetStdHandle
UnlockFileEx
LCMapStringA
WriteFile
GetTimeZoneInformation
TlsGetValue
GetUserDefaultLCID
GetACP
ReadConsoleInputA
FreeLibrary
LocalCompact
FreeEnvironmentStringsW
GetLastError
TlsAlloc
CreatePipe
HeapFree
SetUnhandledExceptionFilter
WideCharToMultiByte
HeapCreate
Sleep
GetPrivateProfileStructA
MoveFileA
SetConsoleCtrlHandler
TransmitCommChar
MultiByteToWideChar
HeapAlloc
GetFileType
GetStdHandle
LCMapStringW
RtlUnwind
TlsSetValue
LoadLibraryA
GetCurrentThread
GetConsoleCP
GetStringTypeExW
EnumResourceTypesA
FindNextFileA
CompareStringA
FindAtomA
TlsFree
GetConsoleCursorInfo
InterlockedIncrement
UnhandledExceptionFilter
CreateDirectoryExA
VirtualFreeEx
GetSystemTimeAsFileTime
GetVersionExA
LeaveCriticalSection
GetOEMCP
IsValidLocale

comdlg32

ChooseColorA
PrintDlgA
ReplaceTextA

user32

RegisterClassA
GetInputState
RegisterClassExA
DdeInitializeA
ScrollDC

Sections

.text
Size: 182KB - Virtual size: 181KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 315KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c0f053f2024bd6cb3d05ba9c1308b4d4

Headers

File Characteristics

Imports

comctl32

kernel32

comdlg32

user32

Sections

.text Size: 182KB - Virtual size: 181KB

.rdata Size: 9KB - Virtual size: 17KB

.data Size: 315KB - Virtual size: 314KB

.rsrc Size: 13KB - Virtual size: 13KB

.text
Size: 182KB - Virtual size: 181KB

.rdata
Size: 9KB - Virtual size: 17KB

.data
Size: 315KB - Virtual size: 314KB

.rsrc
Size: 13KB - Virtual size: 13KB