71ffa3025f6455297748ed63a1dd8836_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

71ffa3025f6455297748ed63a1dd8836_JaffaCakes118
Size

81KB
MD5

71ffa3025f6455297748ed63a1dd8836
SHA1

b822d4863bd2d5800363d0cc8baece7ca16d5dbb
SHA256

7871b23f3555b316c44901a0edb7bb5c4087a32a1270cee2f1a92e6ffbe2a4f0
SHA512

5b326ab66338371e26997f33d6cc56993d86ef647ea8c65bd53f56a920c53fa2e457a80709808ea210e2b23caadd98e07328394c50cca547d2ef71cc0c7bc270
SSDEEP

1536://LYCvgpdWHe+wT+jt2ctgcdVSIgSbh7UA058MZ0Ixc7u2Pxhiy:nXvgyMct5PdVSaOJ581Tuqxhiy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71ffa3025f6455297748ed63a1dd8836_JaffaCakes118

Files

71ffa3025f6455297748ed63a1dd8836_JaffaCakes118
.exe windows:4 windows x86 arch:x86

111a4e9f1922a3ac23070acc0ef54540

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetAsyncKeyState
DestroyMenu
GetMessageTime
GetMessageA
ValidateRect
wvsprintfA
PostQuitMessage
CharUpperA
ShowOwnedPopups

comdlg32

GetOpenFileNameA
GetSaveFileNameA
PrintDlgA

ole32

CoGetStdMarshalEx
StgIsStorageFile
CoUninitialize
StgOpenStorage
OleDuplicateData
CoInitialize
CoRevokeClassObject
OleSetClipboard

kernel32

QueryPerformanceCounter
LCMapStringW
GlobalDeleteAtom
CreateProcessA
LeaveCriticalSection
ReadFile
OpenEventA
HeapAlloc
SystemTimeToFileTime
GetCurrentProcess
GetTickCount
Sleep
SetEnvironmentVariableA
UnregisterWaitEx
GetEnvironmentVariableA
GetPrivateProfileIntW
CopyFileExW
GetShortPathNameW
SetEndOfFile
SwitchToThread
EnumSystemCodePagesW
GetFileAttributesA
FindNextFileA
FormatMessageA
GetModuleFileNameA
CreateFileA
DeleteCriticalSection
GetCurrentThreadId
GetNumberFormatA
GetExitCodeProcess
CreateEventW
SetErrorMode
GetCurrentProcessId
GetThreadTimes
GlobalFlags
MoveFileA
FindFirstFileA
SleepEx
ReleaseActCtx
GetVersionExA
WaitForMultipleObjects
TerminateProcess
CopyFileA
GetSystemDirectoryA
EnterCriticalSection
SetConsoleCtrlHandler
SetFileTime
GlobalSize
WriteFile
LocalFileTimeToFileTime
SetEvent
GetFileSize
DeleteFileA
GetProcAddress
HeapFree
GetCurrentDirectoryA
SetFilePointer
QueryDosDeviceA
GetDriveTypeA
GetCommandLineA
GlobalGetAtomNameA
GetDiskFreeSpaceA
DeviceIoControl
GetProcessHeap
MoveFileExA
GetTempFileNameA
DosDateTimeToFileTime
SetUnhandledExceptionFilter
SetFileAttributesA
GetSystemTime
GlobalFindAtomA
LCMapStringA
GetSystemTimeAsFileTime
FlushFileBuffers
GlobalAddAtomA
FindClose
SetLastError
EnumResourceTypesA
IsValidLanguageGroup

imm32

ImmGetContext
ImmReleaseContext
ImmGetCompositionStringW
ImmGetOpenStatus
ImmNotifyIME

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

111a4e9f1922a3ac23070acc0ef54540

Headers

File Characteristics

Imports

user32

comdlg32

ole32

kernel32

imm32

Sections

.text Size: 11KB - Virtual size: 11KB

.data Size: 5KB - Virtual size: 30KB

.rsrc Size: 3KB - Virtual size: 3KB

.rdata Size: 60KB - Virtual size: 83KB

.text
Size: 11KB - Virtual size: 11KB

.data
Size: 5KB - Virtual size: 30KB

.rsrc
Size: 3KB - Virtual size: 3KB

.rdata
Size: 60KB - Virtual size: 83KB