66a1de6f8894d8549e1ce1f08fb94708_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

66a1de6f8894d8549e1ce1f08fb94708_JaffaCakes118
Size

502KB
MD5

66a1de6f8894d8549e1ce1f08fb94708
SHA1

0b71a01a6ec8b5681759dc9a450147440d1d92b4
SHA256

5703adb39aabcfe79905bd92060cf195408c547fecce2dd4e797db901254eb16
SHA512

c3eab1d40f35067c49a4ae46373e67326d86412750f2f535744160749d52f673d6f25fb6266c1c20161971013eaec1014b9f81620530c1b744738ee2e6b3f7bf
SSDEEP

12288:GMFEjYlfjXXK3rdqwVsKjWkLAlCiDS2QiYkhZoCYaY:GTOjHK3hqwVsaNLAlL5YiSl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66a1de6f8894d8549e1ce1f08fb94708_JaffaCakes118

Files

66a1de6f8894d8549e1ce1f08fb94708_JaffaCakes118
.exe windows:4 windows x86 arch:x86

66c9c2833ec685ceb71fed072d9b6fb4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ReplyMessage
RegisterClassExA
RegisterClassA
GetMenuContextHelpId
GetKeyboardLayoutNameW
RegisterClipboardFormatW
TranslateAcceleratorA
MoveWindow
SetMenuDefaultItem
MonitorFromRect
DlgDirListComboBoxW
WaitForInputIdle

gdi32

CreateDIBPatternBrushPt

comctl32

InitCommonControlsEx

kernel32

RtlUnwind
GetDateFormatA
GetCommandLineA
UnhandledExceptionFilter
GetEnvironmentVariableA
FreeEnvironmentStringsW
OpenMutexA
GlobalReAlloc
GetModuleHandleA
HeapAlloc
TlsSetValue
GetSystemInfo
GetTickCount
CompareStringA
VirtualFree
GetLastError
LoadLibraryA
MultiByteToWideChar
SetLastError
IsValidCodePage
GlobalFlags
GetCurrentProcessId
SetEnvironmentVariableA
lstrcpyW
LeaveCriticalSection
VirtualAlloc
EnumSystemLocalesA
TlsAlloc
HeapCreate
GetCurrentThread
SetFilePointer
DeleteCriticalSection
lstrcmpiA
IsValidLocale
GetEnvironmentStringsW
GetOEMCP
FreeResource
GetCurrentProcess
GetVersionExA
SetHandleCount
LCMapStringW
TlsFree
TerminateProcess
GetEnvironmentStrings
GetCommandLineW
GetModuleFileNameA
VirtualProtect
GetTempPathA
GetProcAddress
GetLocaleInfoW
SetStdHandle
HeapDestroy
CreateMutexA
GetUserDefaultLCID
GetStringTypeA
LCMapStringA
GlobalFree
GetACP
HeapReAlloc
GetLocaleInfoA
GetCurrentThreadId
WriteFile
FreeEnvironmentStringsA
InterlockedExchange
FlushFileBuffers
EnterCriticalSection
InitializeCriticalSection
WideCharToMultiByte
GetMailslotInfo
GetStdHandle
HeapFree
SetConsoleTextAttribute
GetStartupInfoW
ExitProcess
IsBadWritePtr
GetModuleFileNameW
GetFileType
GetNamedPipeInfo
GetStringTypeW
HeapValidate
ReadFile
GetTimeFormatA
GlobalFindAtomA
VirtualQuery
TlsGetValue
GetCPInfo
ReadConsoleOutputW
GetTimeZoneInformation
CloseHandle
GetStartupInfoA
QueryPerformanceCounter
lstrlenW
CompareStringW
HeapSize
GetSystemTimeAsFileTime

Sections

.text
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 311KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66c9c2833ec685ceb71fed072d9b6fb4

Headers

File Characteristics

Imports

user32

gdi32

comctl32

kernel32

Sections

.text Size: 177KB - Virtual size: 177KB

.rdata Size: 8KB - Virtual size: 16KB

.data Size: 311KB - Virtual size: 311KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 177KB - Virtual size: 177KB

.rdata
Size: 8KB - Virtual size: 16KB

.data
Size: 311KB - Virtual size: 311KB

.rsrc
Size: 4KB - Virtual size: 3KB