8758f0ee333e8a92bf0357c9460c3ca3_JaffaCakes118

General

Target

8758f0ee333e8a92bf0357c9460c3ca3_JaffaCakes118
Size

172KB
MD5

8758f0ee333e8a92bf0357c9460c3ca3
SHA1

dbc8c7c61299623a3a96212cdd7602286ebbdcb1
SHA256

188e6619fd66201fbd3e6dd11834a8e0225e513eb93ec986960c776e3c0c8512
SHA512

f0d667ea58beb654f48f3bed5eaab6b8f0325105fad7583fb880ab32a7d2788b0e2e75353232a9b4eb340ad007df23471d47bb60d8fc8dbab402908b265b1b6a
SSDEEP

3072:rCtV1KXmqG3rZF3WZD4Lz+PH3y8/WARrmeYmuyx538l9UbjL9VDvffNIdK+NSP2b:utiXPG7Z5WZDk4HC8OAlmeYnyx+3O/Pa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8758f0ee333e8a92bf0357c9460c3ca3_JaffaCakes118

Files

8758f0ee333e8a92bf0357c9460c3ca3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

51d77336656ce97d31f2143ef54f9f95

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetCPInfoExW
GetVersionExA
GetCPInfo
GetOEMCP
GetACP
GetThreadLocale
GetLocaleInfoA
TlsSetValue
HeapSize
GetTickCount
SetHandleCount
DeleteCriticalSection
GetEnvironmentStrings
lstrlenW
TlsGetValue
EnumResourceTypesA
LeaveCriticalSection
GetFileType
GetEnvironmentStringsW
EnterCriticalSection
InitializeCriticalSection
GetLogicalDriveStringsA
GetStdHandle
FreeEnvironmentStringsA
RaiseException
GetStartupInfoA
MultiByteToWideChar
GetLastError
WriteFile
InterlockedExchange
InterlockedIncrement
WideCharToMultiByte
GetCurrentProcessId

ole32

CoGetTreatAsClass
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
StringFromGUID2
CoTaskMemRealloc

newdev

UpdateDriverForPlugAndPlayDevicesW

gdi32

GetTextExtentPointA
SelectObject
GetTextMetricsA
GetDeviceCaps
DeleteObject
CreateFontIndirectA

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

51d77336656ce97d31f2143ef54f9f95

Headers

File Characteristics

Imports

kernel32

ole32

newdev

gdi32

Sections

.text Size: 98KB - Virtual size: 98KB

.tls Size: 1KB - Virtual size: 1KB

.data Size: 70KB - Virtual size: 70KB

.reloc Size: 1024B - Virtual size: 252KB

.text
Size: 98KB - Virtual size: 98KB

.tls
Size: 1KB - Virtual size: 1KB

.data
Size: 70KB - Virtual size: 70KB

.reloc
Size: 1024B - Virtual size: 252KB