86facd72d072d9e395a32b445ccd730e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

86facd72d072d9e395a32b445ccd730e_JaffaCakes118
Size

328KB
MD5

86facd72d072d9e395a32b445ccd730e
SHA1

92f8ac9c6a1bac8bad27e11b7d9c18b52e82a44f
SHA256

86000350ce20867e0c0734f6fdd5cc72d6920f1b6051d8369a169295af45376c
SHA512

aa7f4493124c48573d496a30efb1584c302f68317167b1ac1def5c6e00ef98ff7eadeca9d4f433f0a18cb9baeca3f4b94ee6fe5b1c07773eb80af7da92868400
SSDEEP

6144:p7WDDaMzXq4KVKPj/uVmdjIjKfNxBv/gOHRUfPFfoVl/jTDLAxFX/1rop:ADfDLgKPj//dAyx/g4iFI1TDsx9/1rO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86facd72d072d9e395a32b445ccd730e_JaffaCakes118

Files

86facd72d072d9e395a32b445ccd730e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

66493201692e9e8bb0b720d7a5a19334

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MapViewOfFileEx
GetFileAttributesExA
WriteFileEx
GetTempPathA
MoveFileWithProgressA
UnmapViewOfFile
LockResource
CreateFileMappingA
CancelIo
GlobalFree
GetFileSize
GetLongPathNameA
CreateHardLinkA
SetFileApisToOEM
CreateIoCompletionPort
GetQueuedCompletionStatus
MapViewOfFile
SetFileAttributesA
FreeLibrary
FindClose
SetFilePointer
FlushViewOfFile
CreateFileA
GetFileType
GetTempFileNameA
ReadFile
SetFileApisToANSI
SetFileValidData
ReadFileEx
WriteFileGather
GetBinaryTypeA
OpenFileMappingA
CopyFileExA
CloseHandle
SetFileShortNameA
SetEndOfFile
FindNextFileA
WriteFile
GetFileTime
FindFirstFileA
UnlockFileEx
LockFileEx
SearchPathA
GetTickCount
LoadResource
FlushFileBuffers
ReadFileScatter
UnlockFile
SetFileTime
PostQueuedCompletionStatus
SetFilePointerEx
MoveFileExA
CheckNameLegalDOS8Dot3A
CopyFileA
GetCompressedFileSizeA
GetFileAttributesA
MoveFileA
SizeofResource
ReplaceFileA
FindFirstFileExA
GetProcAddress
AreFileApisANSI
FindResourceA
GetFullPathNameA
LockFile
LoadLibraryExW
GetShortPathNameA
GetFileInformationByHandle
WinExec
GetModuleFileNameA
GetModuleHandleA
GetFileSizeEx
ExitProcess
MoveFileExW
GetCommandLineW
LoadLibraryA
GlobalAlloc

user32

MoveWindow
GetDesktopWindow
SetDlgItemTextA
EndDialog
DialogBoxParamA
GetWindowRect

advapi32

SetFileSecurityA

shell32

CommandLineToArgvW

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 200KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66493201692e9e8bb0b720d7a5a19334

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

Sections

.text Size: 52KB - Virtual size: 52KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 72KB - Virtual size: 72KB

.rsrc Size: 200KB - Virtual size: 199KB

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 72KB - Virtual size: 72KB

.rsrc
Size: 200KB - Virtual size: 199KB