839ebf545491ff9a0ca67913726746da_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

839ebf545491ff9a0ca67913726746da_JaffaCakes118
Size

724KB
MD5

839ebf545491ff9a0ca67913726746da
SHA1

61491b374b2d3449ddc4956b58e6249a4b744477
SHA256

8e69dffb66858d42c90bb1246153f66ca962703cbbfd7d42eb02e41073296c66
SHA512

1522bda3c55e6dbfa1b64b62e83b3b7a64ef60e4436a8f646ecf361fd1e774eb4b0c23d246599f147504b2656dd087d3569bc840e61504e9c27efb0907653d0b
SSDEEP

12288:QGHXlZVhE3TxkwwzvNNahEnQ/kLEsVtkWzDSWpdV2Ucjl9CCaGppl4RSFHkTyvjJ:VHXlXCN1wbaSnwkLEsVzDD1YrlaRTyvF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
839ebf545491ff9a0ca67913726746da_JaffaCakes118

Files

839ebf545491ff9a0ca67913726746da_JaffaCakes118
.exe windows:5 windows x86 arch:x86

23e4501960e1634890feec36b165bbc9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
CloseHandle
HeapAlloc
LocalFree
UnhandledExceptionFilter
GetProcessHeap
QueryPerformanceCounter
GetCurrentThreadId
LocalAlloc
CreateEventW
QueryPerformanceCounter
GetLastError
GetModuleFileNameA
LeaveCriticalSection
CloseHandle
LocalAlloc
LeaveCriticalSection
HeapDestroy
GetCurrentThreadId
SetLastError
lstrlenA
GetModuleFileNameW
GetModuleFileNameA
InterlockedCompareExchange
CloseHandle
GetTickCount
VirtualAlloc
GetModuleFileNameA
GetModuleHandleA
CloseHandle
Sleep
InterlockedExchange
lstrlenA
CreateThread
GetVersionExA
lstrcmpiW
CloseHandle
InterlockedCompareExchange
GetProcAddress
VirtualAlloc
QueryPerformanceCounter
LoadLibraryA
LocalFree
GetLastError
LocalAlloc
ReadFile
LoadLibraryW
LoadLibraryW
FreeLibrary
GetLastError
lstrcmpiW
DeleteCriticalSection
InterlockedIncrement
EnterCriticalSection
GetCurrentProcess
GetProcessHeap
UnhandledExceptionFilter
GetCurrentThreadId
CreateEventW

user32

SetWindowLongW
LoadStringW
DestroyWindow
TranslateMessage
SetTimer
ReleaseDC
GetSystemMetrics
ShowWindow
KillTimer
GetSystemMetrics
InvalidateRect
GetDC
CreateWindowExW
DispatchMessageW
GetClientRect
BeginPaint
CharNextW
SetWindowLongW
PostQuitMessage
ShowWindow
GetSysColor
GetSysColor
BeginPaint
CharNextW
SendDlgItemMessageW
EnableWindow
BeginPaint
IsWindow
SetWindowTextW
CharNextW
IsDlgButtonChecked
CharNextW
DispatchMessageW
BeginPaint
SetCursor
SetTimer
EndDialog
IsDlgButtonChecked
ReleaseDC
GetDlgItem
SetDlgItemTextW
PeekMessageW
LoadStringW
GetWindowRect
GetFocus
SetDlgItemTextW
SetTimer
SendDlgItemMessageW
PostQuitMessage
GetSysColor
GetWindowRect
BeginPaint
DestroyWindow
CharNextW

Sections

.text
Size: 719KB - Virtual size: 1.4MB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

23e4501960e1634890feec36b165bbc9

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 719KB - Virtual size: 1.4MB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 719KB - Virtual size: 1.4MB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB