78d1a823d1cf8cb71f3241d34159bbc5_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

78d1a823d1cf8cb71f3241d34159bbc5_JaffaCakes118
Size

101KB
MD5

78d1a823d1cf8cb71f3241d34159bbc5
SHA1

361dd004d684c60fb384c4542d68f55abd70fb72
SHA256

2acbcd202b901aa7af92955408c4f16b06bd27031b5ae670a5cf9f2dbdeee8da
SHA512

98dc658974f94d41a5309fdddbcb021a2208f7fcfca57f280a88c817faf8598bc3dfa631a16be0db1297a71985a8c7925118f75744ffaf675c8c4a04eefb3c19
SSDEEP

3072:s1wjYqCTZIIFFVC+dLFV70yywSeHP47s2c6XV:cU8TZpFFVC+dLbAy7wp7V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78d1a823d1cf8cb71f3241d34159bbc5_JaffaCakes118

Files

78d1a823d1cf8cb71f3241d34159bbc5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1cf47c077b976e01f4c287f0b1569ce6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetCurrentThreadId
GetShortPathNameW
ExitProcess
SetFileAttributesA
FindNextFileA
SetFilePointer
ReadFile
HeapFree
SetEvent
GetSystemTime
GetSystemTimeAsFileTime
SetHandleContext
LocalFileTimeToFileTime
SwitchToThread
SetLastError
GetExitCodeProcess
VirtualQuery
WriteFile
HeapAlloc
DeleteFileA
GetProcessHeap
FlushFileBuffers
GetCommandLineA
CreateEventW
GetFileAttributesA
FormatMessageA
CreateFileA
FindClose
EnterCriticalSection
MoveFileA
WaitForMultipleObjects
DosDateTimeToFileTime
CreateProcessA
MoveFileExA
GetEnvironmentVariableA
GetCurrentProcessId
LeaveCriticalSection
SystemTimeToFileTime
SetUnhandledExceptionFilter
GetVersionExA
GetSystemDirectoryA
GetCurrentDirectoryA
OpenEventA
SetFileTime
SetErrorMode
CopyFileA
SetEnvironmentVariableA
QueryPerformanceCounter
GetDriveTypeA
GetFileSize
GlobalFlags
CreateEventA
CloseHandle
LocalLock
CreateThread
GetProcAddress
GetDiskFreeSpaceA
TerminateProcess
DeviceIoControl
GetModuleFileNameA
GetTickCount
DeleteCriticalSection
GetCurrentProcess
GetTapeStatus
SetEndOfFile
QueryDosDeviceA
GetThreadTimes
FindFirstFileA
IsSystemResumeAutomatic

ole32

CoCreateInstance
CoInitialize
OleInitialize
CoUninitialize

comdlg32

PrintDlgA
GetSaveFileNameA
GetOpenFileNameW
GetSaveFileNameW
GetOpenFileNameA

user32

ChangeDisplaySettingsA
GetKeyNameTextA
MessageBoxA
ShowWindow

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lmyd
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 104KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1cf47c077b976e01f4c287f0b1569ce6

Headers

File Characteristics

Imports

kernel32

ole32

comdlg32

user32

Sections

.text Size: 6KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 13KB

.lmyd Size: 3KB - Virtual size: 3KB

.edata Size: 104KB - Virtual size: 127KB

.text
Size: 6KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 13KB

.lmyd
Size: 3KB - Virtual size: 3KB

.edata
Size: 104KB - Virtual size: 127KB