5d33d4ed2ae1ec060f8a910a7155f9c0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5d33d4ed2ae1ec060f8a910a7155f9c0_JaffaCakes118
Size

880KB
MD5

5d33d4ed2ae1ec060f8a910a7155f9c0
SHA1

6281ed5916a22926705daef1e0eb19ba65cc59f4
SHA256

6c3b6a36aef2a2e448647634cafe1f3b0380c7cae28e958fe6510b282a7b305a
SHA512

c2b076e051ca05737e78441f35af7b44a1d943284bae35ce1ca0de9c01bcffde1a7a2f2440802f0fc9a7a220029aeec8a1ec1154c70d54c55beaa36a6b6a8a31
SSDEEP

12288:LFmPPhV0m3PFjFEuIoeSP9fY6GCecHDCFAL3:LIhV0m3PFjFEAeSP9fYV0DCFq3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d33d4ed2ae1ec060f8a910a7155f9c0_JaffaCakes118

Files

5d33d4ed2ae1ec060f8a910a7155f9c0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7e05ec83dc8188e88c654b5166dba9ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ExitThread
LeaveCriticalSection
EnterCriticalSection
GetTickCount
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetLocalTime
GetModuleHandleA
CloseHandle
WriteFile
CreateFileA
ExitProcess
GetSystemDirectoryA
DeleteFileA
GetTempPathA
CreateProcessA
MoveFileA
QueryPerformanceCounter
QueryPerformanceFrequency
ReadFile
SetFilePointer
GetFileSize
FindClose
FindNextFileA
FindFirstFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetTimeFormatA
GetDateFormatA
GetFileAttributesA
LoadLibraryA
GetProcAddress
FreeLibrary
FormatMessageA
LoadLibraryExA
GlobalLock
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
SetFileTime
GetFileTime
ExpandEnvironmentStringsA
SetFileAttributesA
MultiByteToWideChar
GetComputerNameA
TerminateProcess
OpenProcess
GetCurrentProcess
GetExitCodeProcess
PeekNamedPipe
DuplicateHandle
CreatePipe
SetConsoleCtrlHandler
GetLocaleInfoA
GetVersionExA
GetCurrentProcessId
CopyFileA
SizeofResource
LockResource
LoadResource
FindResourceA
WaitForSingleObject
CreateMutexA
WideCharToMultiByte
GenerateConsoleCtrlEvent
WaitForMultipleObjects
TerminateThread
GlobalMemoryStatus
GetModuleFileNameA
CreateThread
GetLastError
GlobalUnlock
Sleep
HeapFree
HeapAlloc
HeapReAlloc
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
RtlUnwind
GetCommandLineA
GetProcessHeap
GetStartupInfoA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetStdHandle
SetHandleCount
GetFileType
GetCPInfo
GetACP
GetOEMCP
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
InitializeCriticalSection
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
SetStdHandle
FlushFileBuffers
GetStringTypeA
GetStringTypeW
HeapSize
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile

advapi32

RegSetValueExA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

Sections

0
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

1
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

2
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 364KB - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7e05ec83dc8188e88c654b5166dba9ed

Headers

File Characteristics

Imports

kernel32

advapi32

Sections

0 Size: 156KB - Virtual size: 156KB

1 Size: 56KB - Virtual size: 56KB

2 Size: 196KB - Virtual size: 196KB

3 Size: 364KB - Virtual size: 364KB

4 Size: 64KB - Virtual size: 64KB

5 Size: 8KB - Virtual size: 8KB

6 Size: 32KB - Virtual size: 32KB

0
Size: 156KB - Virtual size: 156KB

1
Size: 56KB - Virtual size: 56KB

2
Size: 196KB - Virtual size: 196KB

3
Size: 364KB - Virtual size: 364KB

4
Size: 64KB - Virtual size: 64KB

5
Size: 8KB - Virtual size: 8KB

6
Size: 32KB - Virtual size: 32KB