4caa3125038b87cb1800413b1aca7e43_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4caa3125038b87cb1800413b1aca7e43_JaffaCakes118
Size

77KB
MD5

4caa3125038b87cb1800413b1aca7e43
SHA1

848c076d5617ad4be944341f52e7630e4f15f8d6
SHA256

8219093b10a2b0766ac33314ea102cf575b2aa468f1cbccf4aca8364b39edeb7
SHA512

0a561eb3abd60067edefc4fdfebd5cb06d073a3db7c48bd6d4ad62322938f43c3e6a9b109bf77076b3167815ff26971aa7f5dd5637ab8f0e6ba04ff0e50921ef
SSDEEP

768:hL4MTK7r1Uwx2vezwRYh9En2idTdElOZY2Uypn739o9V:hL4MT2rhxRKnvL5k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4caa3125038b87cb1800413b1aca7e43_JaffaCakes118

Files

4caa3125038b87cb1800413b1aca7e43_JaffaCakes118
.exe windows:4 windows x86 arch:x86

83f6d281683513c03eab512cd547cf14

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
LoadLibraryExA
LoadLibraryExA
DeviceIoControl
TerminateProcess
CreateFileA
ReadFile
GetSystemTime
GetSystemTime
VirtualProtectEx
CreateFileA
Sleep
CreateFileA
LoadLibraryExA
ReadProcessMemory
DeviceIoControl
DeviceIoControl
CreateProcessW
ReadFile
LoadLibraryExW
GetStartupInfoW
CreateFileA
GetStartupInfoA
ReadProcessMemory
LoadLibraryA
LoadLibraryExW
WaitForSingleObjectEx
TerminateProcess
WriteProcessMemory
GetStartupInfoW
CreateProcessA
GetProcAddress
GetCurrentDirectoryA
GetLastError
LoadLibraryA
GetCommandLineA
GetHandleInformation
GetCommandLineA
GetModuleHandleA
GetCurrentProcess
GetCurrentDirectoryA
GetCurrentThread
GetCurrentThreadId
Sleep
LoadLibraryExW
ReleaseMutex
SleepEx
DeviceIoControl
CreateProcessA
ReadFile
VirtualProtect
VirtualProtectEx
WaitForSingleObject
VirtualProtect
VirtualProtect
CreateProcessW
SleepEx
LoadLibraryA
GetStartupInfoA
GetStartupInfoW
VirtualProtect
ReleaseMutex
VirtualProtect
GetStartupInfoA
WriteProcessMemory
CreateFileA
GetStartupInfoW
GetSystemTime
WaitForSingleObject
DeviceIoControl
Sleep
GetStartupInfoW
LoadLibraryExW
WaitForSingleObject
TerminateProcess
LoadLibraryExW
LoadLibraryExA
Sleep
ReadFile
ReadProcessMemory
GetSystemTime
VirtualProtectEx
GetSystemTime
DeviceIoControl
GetSystemTimeAsFileTime
LoadLibraryExW
CreateProcessW
GetSystemTime
ReadProcessMemory
SleepEx
ReleaseMutex
DeviceIoControl
ReadFile
GetSystemTime
VirtualProtect
WaitForSingleObjectEx
GetStartupInfoW
VirtualProtectEx
ReadProcessMemory
DeviceIoControl
DeviceIoControl
SleepEx
LoadLibraryExW
VirtualProtectEx
Sleep
SleepEx
CreateProcessW
LoadLibraryExA
WriteProcessMemory
TerminateProcess
WaitForSingleObject
ReleaseMutex
WaitForSingleObject
GetSystemTimeAsFileTime
GetStartupInfoA
VirtualProtect
LoadLibraryExW
WaitForSingleObjectEx
LoadLibraryA
TerminateProcess
CreateProcessA
DeviceIoControl
CreateProcessA
GetSystemTimeAsFileTime
ReleaseMutex
TerminateProcess
GetStartupInfoW
DeviceIoControl
CreateProcessA
VirtualProtectEx
ReleaseMutex
CreateFileA
LoadLibraryA
SleepEx
WaitForSingleObjectEx
LoadLibraryExW
DeviceIoControl
Sleep
GetSystemTime
ReadFile
GetSystemTimeAsFileTime
LoadLibraryA
SleepEx
GetSystemTimeAsFileTime
ReadProcessMemory
TerminateProcess
GetSystemTimeAsFileTime
WaitForSingleObjectEx
CreateProcessA
ReadProcessMemory
GetSystemTimeAsFileTime
VirtualProtectEx
GetStartupInfoA
LoadLibraryExA
CreateProcessA
ReleaseMutex
GetStartupInfoA
CreateProcessA
GetStartupInfoA
GetStartupInfoA
GetStartupInfoA
LoadLibraryExW
VirtualProtectEx
LoadLibraryExW
VirtualProtectEx
VirtualProtect
GetSystemTimeAsFileTime
VirtualProtect
GetSystemTime
LoadLibraryExA
SleepEx
LoadLibraryExW
ReadProcessMemory
WaitForSingleObject

Sections

.text
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83f6d281683513c03eab512cd547cf14

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 9KB - Virtual size: 12KB

.rdata Size: 6KB - Virtual size: 8KB

.data Size: 2KB - Virtual size: 4KB

.rsrc Size: 5KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 4KB

.data Size: 52KB - Virtual size: 52KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.text
Size: 9KB - Virtual size: 12KB

.rdata
Size: 6KB - Virtual size: 8KB

.data
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 5KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 52KB - Virtual size: 52KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB