37cbb71c74056880a67cbe14a64e0d9d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

37cbb71c74056880a67cbe14a64e0d9d_JaffaCakes118
Size

475KB
MD5

37cbb71c74056880a67cbe14a64e0d9d
SHA1

a735cf01eecc92ae42bfcf20a35e0480be28890f
SHA256

2674adf91542383e2fa3d1b85ce9cc054f118b7dffa6514ffb4094c4ceb257e6
SHA512

614b1571c6b51259cf37a1f1e0fd6f6f73ebcc1032d60ecc8a17e53376df51c29b775da19c4b36dee997306aa2bf77b9f3b2bce01a4da74232b0512a2c344020
SSDEEP

12288:bU6Su4ox6hLa59DKlfqoz1x5kypfwAfktg/4IQqmyFd1:blSc4La594Tz1dbB4Pqmy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37cbb71c74056880a67cbe14a64e0d9d_JaffaCakes118

Files

37cbb71c74056880a67cbe14a64e0d9d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

28c237fa94f39e8b060192be03c2be70

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetStringTypeA
GetTimeFormatA
IsValidLocale
GetProcAddress
GetTimeZoneInformation
HeapReAlloc
LCMapStringW
GlobalDeleteAtom
GetEnvironmentStringsW
GetCurrentProcessId
SetConsoleCtrlHandler
CreateMailslotA
FreeEnvironmentStringsA
SetEnvironmentVariableA
TlsAlloc
GetUserDefaultLCID
GlobalReAlloc
SetHandleCount
TlsFree
GetACP
SetUnhandledExceptionFilter
ExitThread
GetOEMCP
HeapCreate
MultiByteToWideChar
GetDateFormatA
EnumDateFormatsExW
WriteFile
ExitProcess
GetTickCount
lstrcpyA
LeaveCriticalSection
HeapFree
CompareStringW
GetModuleFileNameA
GetLocaleInfoA
LoadLibraryA
QueryPerformanceCounter
CompareStringA
VirtualAlloc
EnumDateFormatsW
RtlZeroMemory
Sleep
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
UnhandledExceptionFilter
DeleteCriticalSection
FreeEnvironmentStringsW
GetCommandLineA
InterlockedIncrement
SetLastError
GetStringTypeW
LoadResource
GetSystemTimeAsFileTime
EnterCriticalSection
GetPrivateProfileSectionNamesW
EnumCalendarInfoExW
EnumSystemLocalesA
FreeLibrary
lstrcpynA
IsValidCodePage
HeapDestroy
TlsSetValue
ResumeThread
GetCPInfo
IsDebuggerPresent
VirtualFree
GetStdHandle
LCMapStringA
GetCurrentThread
ConnectNamedPipe
InterlockedExchange
GetFileType
TlsGetValue
GetPrivateProfileStringW
HeapSize
HeapValidate
FillConsoleOutputCharacterA
GetVersionExA
GetStartupInfoA
HeapAlloc
InterlockedDecrement
FindFirstFileExW
OpenWaitableTimerA
GetProcessHeap
VirtualQuery
GetModuleHandleA
InitializeCriticalSection
GetEnvironmentStrings
GetLocaleInfoW
RtlUnwind
GetSystemTimeAdjustment
WideCharToMultiByte
CreateNamedPipeA

gdi32

PolyTextOutA
GetCharWidth32W
GetRgnBox
FillPath
RoundRect
StartPage
SetDIBColorTable
GetCharABCWidthsA
UpdateICMRegKeyW
StartDocA
GetGlyphOutlineW

Sections

.text
Size: 185KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 282KB - Virtual size: 295KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

28c237fa94f39e8b060192be03c2be70

Headers

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 185KB - Virtual size: 184KB

.data Size: 282KB - Virtual size: 295KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 185KB - Virtual size: 184KB

.data
Size: 282KB - Virtual size: 295KB

.rsrc
Size: 7KB - Virtual size: 7KB