87797dbc4e881c44b5d0f2d3fbda2b3a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

87797dbc4e881c44b5d0f2d3fbda2b3a_JaffaCakes118
Size

119KB
MD5

87797dbc4e881c44b5d0f2d3fbda2b3a
SHA1

205b3570d4fe02c6afc66f59eee9677dd7062de9
SHA256

e52675599c4f716a7f6bc0986e7bd4987f989ba86dcc4f8fdcb005bfe6a9af5f
SHA512

19111366f1fbe860dfe4b21e7f96ab7fc29f34d6c1ed00468359b564685fc32207118fdb6dc1f835b9bd075bf307f0fd7b4321ac57583a88055f32e276263261
SSDEEP

768:3WHHVJVuN+Yu91uE6TcSVe47fMzliZdVb7wyW6lr+0ZmSq1F15FCNs:3GniDiiZdxhWEySMFrFM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87797dbc4e881c44b5d0f2d3fbda2b3a_JaffaCakes118

Files

87797dbc4e881c44b5d0f2d3fbda2b3a_JaffaCakes118
.exe windows:1 windows x86 arch:x86

9302e11cf2cf6d9b8347925b26e88584

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
GetStartupInfoW
InterlockedIncrement
LocalAlloc
GetVersionExA
LoadLibraryW
GetCommandLineW
InitializeCriticalSection
DeleteCriticalSection
GetStartupInfoA
LoadLibraryA
InterlockedIncrement
InterlockedDecrement
GetTickCount
FormatMessageW
SetLastError
GetCurrentThreadId
TerminateProcess
SetEvent
FreeLibrary
DeleteCriticalSection
FormatMessageW
EnterCriticalSection
GetCurrentProcess
MultiByteToWideChar
HeapReAlloc
VirtualFree
GetCurrentProcessId
QueryPerformanceCounter
LoadLibraryA
MultiByteToWideChar
UnhandledExceptionFilter
Sleep
GetCurrentThreadId
InitializeCriticalSection
QueryPerformanceCounter
ExitProcess
InterlockedDecrement
HeapDestroy
GetSystemTimeAsFileTime
UnhandledExceptionFilter
GetStartupInfoA
GetTickCount
lstrcmpiW
CloseHandle
GetProcAddress
QueryPerformanceCounter
WriteFile
lstrlenW
GetCommandLineW
VirtualFree
CreateFileW
HeapReAlloc
lstrcmpiW
VirtualFree
EnterCriticalSection
InterlockedDecrement
GetCommandLineA
UnhandledExceptionFilter
GetModuleHandleW
GetACP
GetCurrentProcessId
GetModuleHandleA
LoadLibraryA
GetModuleHandleW
GetCommandLineA
InterlockedIncrement
HeapAlloc
lstrcpyW
WideCharToMultiByte
QueryPerformanceCounter
GetModuleHandleW
GetModuleHandleA
HeapReAlloc
HeapAlloc
LocalAlloc
ExitProcess
LoadLibraryA
SetFilePointer
CreateFileW
CreateThread
HeapDestroy
GetSystemTimeAsFileTime
WriteFile
GetModuleHandleA
GetACP
LocalAlloc
HeapAlloc
SetUnhandledExceptionFilter
lstrcmpiW
GetSystemTimeAsFileTime
CreateFileW
HeapAlloc
HeapDestroy
SetFilePointer
GetCurrentProcess
lstrcmpiW
SetEvent
GetModuleFileNameA
LoadLibraryA
QueryPerformanceCounter
GetLastError
WaitForSingleObject
lstrlenW
GetACP
CloseHandle
FormatMessageW
WaitForSingleObject
SetFilePointer
Sleep
SetUnhandledExceptionFilter
LocalFree
HeapDestroy
ReadFile
lstrcpyW
HeapFree
LeaveCriticalSection
GetACP
GetLastError
GetModuleHandleW
InterlockedIncrement
ExitProcess
LocalFree
LocalAlloc
WideCharToMultiByte

Sections

.data
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 512B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9302e11cf2cf6d9b8347925b26e88584

Headers

File Characteristics

Imports

kernel32

Sections

.data Size: 102KB - Virtual size: 120KB

.data Size: 1024B - Virtual size: 4KB

.data Size: 1KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

Size: 512B - Virtual size: 512B

.data
Size: 102KB - Virtual size: 120KB

.data
Size: 1024B - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB