4319de832aa9fbd24af299461da5d524_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4319de832aa9fbd24af299461da5d524_JaffaCakes118
Size

494KB
MD5

4319de832aa9fbd24af299461da5d524
SHA1

74cb22c0977a6dbccd254493c58fad83f1e2c03a
SHA256

4c04d2638e1cdfbe719f38f58b0cd3f482662a56a0dff1cb33a556aa694f6ded
SHA512

11a7950c759243585d18b0901b3d8339f81c5e92b7fd0556d2db445925adce35b2a511a8066750b46c0265a807f73d8d27e96a7424a28bde7fdccbbd5e4a205a
SSDEEP

12288:y5qgkSIZD1ClbYg/TlZrPlUXHlWoqHNvBjr2:QqgkLB1C1Yg/pZreXHUJNvBjr2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4319de832aa9fbd24af299461da5d524_JaffaCakes118

Files

4319de832aa9fbd24af299461da5d524_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f96740f4b44dedd761e0cb3564030039

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

user32

EnumWindowStationsW
CreateWindowExW
RegisterClassExA
DdeQueryStringA
ShowWindow
SetClipboardViewer
GetClassInfoExW
MessageBoxW
UnionRect
GetMessageTime
RegisterClassA

kernel32

GetTickCount
LeaveCriticalSection
SetLastError
SetStdHandle
ExitProcess
GetTimeFormatA
VirtualAlloc
IsValidCodePage
SetFilePointer
GetOEMCP
QueryPerformanceCounter
HeapAlloc
GetNumberFormatA
GetStringTypeA
GetSystemInfo
GetLocaleInfoW
CloseHandle
GetModuleFileNameA
GetStartupInfoA
IsBadWritePtr
GetCurrentProcessId
LoadResource
GetUserDefaultLCID
EnterCriticalSection
GetEnvironmentStringsW
HeapDestroy
GetDateFormatA
OpenMutexA
LoadLibraryA
InterlockedExchange
GetLocaleInfoA
GetCurrentThread
GetCurrentThreadId
TerminateProcess
TlsAlloc
GetCurrentProcess
TlsGetValue
WriteFile
DeleteCriticalSection
HeapCreate
GetEnvironmentStrings
RtlUnwind
EnumSystemLocalesA
CompareStringA
GetStdHandle
GetCommandLineA
UnhandledExceptionFilter
GetACP
VirtualFree
LCMapStringA
LCMapStringW
ReadFile
MultiByteToWideChar
CreateMutexA
IsValidLocale
GetModuleHandleA
GetTimeZoneInformation
CompareStringW
GetLastError
FreeEnvironmentStringsA
FlushFileBuffers
HeapReAlloc
VirtualQuery
HeapFree
HeapSize
GetStringTypeW
GetSystemTimeAsFileTime
GetCPInfo
GetProcAddress
TlsSetValue
FreeEnvironmentStringsW
VirtualProtect
GetVersionExA
InitializeCriticalSection
TlsFree
GetFileType
WideCharToMultiByte
SetEnvironmentVariableA
SetHandleCount

Sections

.text
Size: 324KB - Virtual size: 323KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f96740f4b44dedd761e0cb3564030039

Headers

File Characteristics

Imports

comctl32

user32

kernel32

Sections

.text Size: 324KB - Virtual size: 323KB

.rdata Size: 48KB - Virtual size: 73KB

.data Size: 114KB - Virtual size: 113KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 324KB - Virtual size: 323KB

.rdata
Size: 48KB - Virtual size: 73KB

.data
Size: 114KB - Virtual size: 113KB

.rsrc
Size: 7KB - Virtual size: 6KB