60d0110115b28da1fd44a547f74c4510_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

60d0110115b28da1fd44a547f74c4510_JaffaCakes118
Size

6.6MB
MD5

60d0110115b28da1fd44a547f74c4510
SHA1

761ae9bd9c22936eb49db3767a2ae6c93f583754
SHA256

ec42694f420522bc8329d49ec99c4ca144d8c409edb8d54cf28510c114165a3b
SHA512

5e2d1e8bffaa428d759f8a8be9963b642012df485fa03da0723b1e009856be0740e3d5dde9abf80012a4934e67e90728bf7be073c95e56870e8344b32d763e11
SSDEEP

98304:09WeqcLpgCalyqoVavJ70fwlI1AatIxMKf0RjkhRpjzwjWP2rI/QzUeJiuiaw:09Jq7txyfHtRKf0uzjzwiPgI/KZJbw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
60d0110115b28da1fd44a547f74c4510_JaffaCakes118

Files

60d0110115b28da1fd44a547f74c4510_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5ce2453bb6fbf0d4d67c9e6641f52131

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetCurrentProcessId
GetVersion
GetModuleHandleA
GetCurrentThread
GetCommandLineA
GetLastError
GetCurrentThreadId
ExitProcess
HeapAlloc
GetProcessHeap
GetOEMCP
VirtualAlloc
Sleep
VirtualFree
FindResourceW
UnmapViewOfFile
CreateProcessA
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
HeapSize
GetCurrentDirectoryA
GetCommandLineW
LockResource
SizeofResource
lstrlenW
GetEnvironmentStringsW
LCMapStringA
lstrlenA
HeapCreate
LeaveCriticalSection
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
RemoveDirectoryA
CompareStringA
lstrcpyA
FindFirstFileA
GlobalLock
DeleteFileW
GetCPInfo
GetWindowsDirectoryA
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
QueryPerformanceCounter
FreeLibrary
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
SetEndOfFile
TerminateProcess
SetUnhandledExceptionFilter
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
VirtualProtect
GetModuleFileNameW
InitializeCriticalSection
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
GetEnvironmentVariableA
LocalFree
SetEvent
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
WideCharToMultiByte
SetStdHandle
FreeEnvironmentStringsW
LocalAlloc
GetLocaleInfoA
FreeEnvironmentStringsA
GetLocalTime
GetFileAttributesW
HeapDestroy
WaitForSingleObject
ReleaseMutex
GetStdHandle

user32

SetCursor
CallWindowProcA
wsprintfA
SystemParametersInfoA
MessageBoxA
EndDialog
GetDesktopWindow
LoadCursorA
ScreenToClient
GetDlgItem
SetWindowLongA
DefWindowProcA
BeginPaint
SetFocus
FillRect
CreateWindowExA
GetSubMenu
RegisterClassA
EnableMenuItem
LoadStringA
TranslateMessage
PeekMessageA
EnableWindow
ShowWindow
UpdateWindow
GetParent
DestroyWindow
GetDC
IsWindow
SetForegroundWindow

Sections

.text
Size: 6.2MB - Virtual size: 6.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 394KB - Virtual size: 393KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5ce2453bb6fbf0d4d67c9e6641f52131

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 6.2MB - Virtual size: 6.9MB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 18KB - Virtual size: 18KB

.rsrc Size: 394KB - Virtual size: 393KB

.text
Size: 6.2MB - Virtual size: 6.9MB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 18KB - Virtual size: 18KB

.rsrc
Size: 394KB - Virtual size: 393KB