4ac8d342b62e6a87c23cca48e5be0dbc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4ac8d342b62e6a87c23cca48e5be0dbc_JaffaCakes118
Size

68KB
MD5

4ac8d342b62e6a87c23cca48e5be0dbc
SHA1

e1c007247ca663873458aec7bda0d2af29e8a618
SHA256

a64472498a7969010196c9bd3c5822197457c32cdfe17f3d818081a67d14098a
SHA512

8ded25e244fb589ac25c44e21f2a39aa85c75e581bf8488f8fc33622c6b019fb2163fd67a4fd462e592cd206a8b1c7a640b9a3ad50c722e8189e8b5e4c123698
SSDEEP

768:H04Msd9XCr+83C3Pb9wEoJSMiJS5vTh6X5rK3IzwL/s5CU2OMohuT:dMg9Tb9oJSWV16X5gIsLvTXohuT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ac8d342b62e6a87c23cca48e5be0dbc_JaffaCakes118

Files

4ac8d342b62e6a87c23cca48e5be0dbc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cedf5295cd6b6033164603f12907797c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnmapViewOfFile
WriteFile
MapViewOfFile
CreateFileMappingA
CloseHandle
GetFileSize
CreateFileA
SetFileAttributesW
MultiByteToWideChar
lstrlenA
CopyFileA
DeleteFileA
GetFileTime
FindNextFileA
SetFileAttributesA
lstrcpynA
GetDiskFreeSpaceA
GetProcAddress
GetModuleHandleA
ReleaseMutex
WaitForSingleObject
lstrcmpiA
GetModuleFileNameA
GetTempFileNameA
GetTempPathA
ReadFile
SetFilePointer
CreateDirectoryA
GetCurrentProcess
FormatMessageA
GetLastError
SetErrorMode
SetCurrentDirectoryA
GetWindowsDirectoryA
SetFileTime
SystemTimeToFileTime
CreateProcessA
GetSystemDirectoryA
lstrcmpA
GetVersion
CreateThread
CreateMutexA
CreateSemaphoreA
Sleep
GetDriveTypeA
GetLogicalDriveStringsA
ReleaseSemaphore
OpenSemaphoreA
VirtualFree
VirtualAlloc
SizeofResource
LockResource
LoadResource
FindResourceA
GetComputerNameA
GetShortPathNameA
CompareStringW
CompareStringA
SetEndOfFile
LoadLibraryA
GetOEMCP
GetACP
FindFirstFileA
FindClose
GetEnvironmentVariableA
lstrcatA
lstrcpyA
GetSystemTime
OutputDebugStringA
ExitProcess
WinExec
GetCPInfo
GetStringTypeW
GetStringTypeA
FlushFileBuffers
SetStdHandle
GetTimeZoneInformation
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapAlloc
GetFileAttributesA
FileTimeToSystemTime
FileTimeToLocalFileTime
RtlUnwind
GetStartupInfoA
GetCommandLineA
HeapDestroy
HeapCreate
HeapFree
HeapReAlloc
TerminateProcess
WideCharToMultiByte
LCMapStringA
LCMapStringW
SetEnvironmentVariableA

user32

PostQuitMessage
ShowWindow
DialogBoxParamA
wsprintfA
EndDialog

advapi32

RegSetValueExA
RegCloseKey
RegRestoreKeyA
RegOpenKeyExA
RegSaveKeyA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegQueryValueExA

ole32

CoInitialize
CoUninitialize

shlwapi

PathQuoteSpacesA

ws2_32

WSAStartup
WSACleanup
inet_addr
gethostbyname

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cedf5295cd6b6033164603f12907797c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

shlwapi

ws2_32

Sections

.text Size: 44KB - Virtual size: 44KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 13KB

.rsrc Size: 4KB - Virtual size: 52KB

.text
Size: 44KB - Virtual size: 44KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 13KB

.rsrc
Size: 4KB - Virtual size: 52KB