66e61b95d3fbb67fba4adc5bfa9604a4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

66e61b95d3fbb67fba4adc5bfa9604a4_JaffaCakes118
Size

356KB
MD5

66e61b95d3fbb67fba4adc5bfa9604a4
SHA1

f6518dfa40d34885db07505539e4e74743a22bb5
SHA256

a3b6aaee5e23b07aed5d492ac28d1f40c4804ebf6d9cdf5401db3d955466dae6
SHA512

2e21c39256ec81ce09891dbe5c3ba1651da3e86a58d86eb45d0356f6476cd6ec51161f608f1a6be6b2ff06fac831f92adbf55909a0e0ae3379451543d2756f20
SSDEEP

6144:8/4RTts4BxpD1MKUPdOL6pVQCaue2EVZ9hVvgOgs:s4ssB3wE6pVQ1XRhlvgs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66e61b95d3fbb67fba4adc5bfa9604a4_JaffaCakes118

Files

66e61b95d3fbb67fba4adc5bfa9604a4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ebf7e1da195f8379acff17fa1d4d8654

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

GetStdHandle
HeapCreate
SetHandleCount
CompareStringA
InterlockedExchange
FreeEnvironmentStringsW
VirtualFree
RtlUnwind
SetConsoleTitleW
VirtualQuery
TlsFree
GlobalDeleteAtom
EnterCriticalSection
SetPriorityClass
GetACP
DeleteCriticalSection
HeapAlloc
LeaveCriticalSection
GetStringTypeW
ReadFile
GetStringTypeA
SetEnvironmentVariableA
TlsAlloc
SetStdHandle
LoadLibraryA
GetCurrentProcessId
GetProcAddress
GetCommandLineA
GetTickCount
GlobalHandle
HeapSize
FlushFileBuffers
LCMapStringA
CloseHandle
EnumSystemLocalesA
HeapFree
GetFileType
IsBadWritePtr
WriteFile
GetCPInfo
IsValidCodePage
CreateFileMappingA
HeapDestroy
FreeEnvironmentStringsA
GetLocalTime
GetFileSize
GetSystemTimeAsFileTime
GetStartupInfoA
TerminateProcess
GetCurrentThread
SetLastError
OpenMutexA
GetLocaleInfoW
GetVersionExA
WideCharToMultiByte
GetSystemInfo
TlsSetValue
IsValidLocale
SetFilePointer
GetLastError
LCMapStringW
GetLocaleInfoA
ReadConsoleW
GetModuleHandleA
GetOEMCP
GetTimeZoneInformation
IsDebuggerPresent
VirtualProtect
HeapReAlloc
GetDateFormatA
GetEnvironmentStrings
GetEnvironmentStringsW
WriteConsoleOutputA
ExitProcess
GetTimeFormatA
GetModuleFileNameA
MultiByteToWideChar
UnhandledExceptionFilter
VirtualAlloc
TlsGetValue
QueryPerformanceCounter
InitializeCriticalSection
CreateMutexA
GetCurrentThreadId
GetCurrentProcess
CompareStringW
GetUserDefaultLCID

user32

DdeQueryNextServer
RegisterClassA
RegisterClassExA
MapDialogRect

Sections

.text
Size: 225KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ebf7e1da195f8379acff17fa1d4d8654

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 225KB - Virtual size: 224KB

.rdata Size: 25KB - Virtual size: 46KB

.data Size: 93KB - Virtual size: 92KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 225KB - Virtual size: 224KB

.rdata
Size: 25KB - Virtual size: 46KB

.data
Size: 93KB - Virtual size: 92KB

.rsrc
Size: 11KB - Virtual size: 11KB