86867c1081fb0e8dea851aa3d5d6ac30_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

86867c1081fb0e8dea851aa3d5d6ac30_JaffaCakes118
Size

358KB
MD5

86867c1081fb0e8dea851aa3d5d6ac30
SHA1

8b7395bddb501cdfe01df70eebc08e953f15a605
SHA256

819ecd2ff19f1645a7cb534e1aaba8485e68baaee8e1bfdecd556d61cac53985
SHA512

b2b48533643c22e6c8090502fcf602e4cf4a8ba3494345832fe261de8b45998e853a4526139441d0275804b61070bbc98756135686a6fb286041861f7988b142
SSDEEP

6144:dqXQwxGDlxxl+XB6bI+BRddJfJR1c8eG7Sv28y67GkfZoubib:d4mWMbIcdnR1zQvK67leb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86867c1081fb0e8dea851aa3d5d6ac30_JaffaCakes118

Files

86867c1081fb0e8dea851aa3d5d6ac30_JaffaCakes118
.exe windows:4 windows x86 arch:x86

767f51a5776d78a5209db1874522b709

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
MultiByteToWideChar
GetCurrentThread
CloseHandle
GetDateFormatA
TlsFree
GetStringTypeW
GetComputerNameW
LCMapStringA
GetCurrentProcess
GetConsoleCP
OpenMutexA
SetStdHandle
DeleteCriticalSection
SetHandleCount
HeapReAlloc
GetComputerNameA
CompareStringW
LCMapStringW
GetSystemTimeAsFileTime
QueryPerformanceCounter
VirtualQuery
GetEnvironmentStringsW
GetProfileIntA
GetLocaleInfoA
CompareStringA
TlsGetValue
GetProcAddress
GetStringTypeA
CreateMutexA
SetEnvironmentVariableA
LoadLibraryA
MoveFileExW
WriteConsoleInputA
FreeEnvironmentStringsA
InterlockedIncrement
VirtualAlloc
LocalFlags
GetOEMCP
GetFileType
GetCurrentThreadId
SetUnhandledExceptionFilter
FreeLibrary
EnterCriticalSection
IsValidLocale
GetLastError
GetLocaleInfoW
WideCharToMultiByte
GetProfileIntW
FreeEnvironmentStringsW
GetEnvironmentStrings
SetLastError
GetTimeFormatA
ExitProcess
TerminateProcess
GetTimeZoneInformation
UnhandledExceptionFilter
HeapFree
HeapDestroy
CreateFileA
WriteConsoleW
GetProcessHeap
FlushFileBuffers
SetFileAttributesA
GetCommandLineA
GetConsoleMode
Sleep
HeapSize
GetTickCount
GetConsoleOutputCP
HeapCreate
OpenFile
WriteConsoleA
GetDriveTypeW
GetUserDefaultLCID
SetFilePointer
IsDebuggerPresent
GetModuleHandleA
HeapAlloc
GetMailslotInfo
GetVersionExA
AllocConsole
TlsAlloc
FindNextChangeNotification
SetConsoleCtrlHandler
GlobalGetAtomNameW
InterlockedExchange
InterlockedDecrement
GetStdHandle
GetACP
IsValidCodePage
LeaveCriticalSection
GetCPInfo
TlsSetValue
ReleaseMutex
VirtualFree
RtlFillMemory
EnumSystemLocalesA
GetModuleFileNameA
FoldStringA
ReadFile
GetLocalTime
InitializeCriticalSection
RtlUnwind
GetCurrentProcessId
GetStartupInfoA

comctl32

InitCommonControlsEx

user32

PostMessageA
CharNextA
RegisterClassExA
LoadMenuA
RegisterClassA
GetPropA
DdeAccessData

Sections

.text
Size: 217KB - Virtual size: 217KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 31KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

767f51a5776d78a5209db1874522b709

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 217KB - Virtual size: 217KB

.rdata Size: 31KB - Virtual size: 51KB

.data Size: 94KB - Virtual size: 94KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 217KB - Virtual size: 217KB

.rdata
Size: 31KB - Virtual size: 51KB

.data
Size: 94KB - Virtual size: 94KB

.rsrc
Size: 14KB - Virtual size: 13KB