879ca012f0c9d9a869b93c596523cdcc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

879ca012f0c9d9a869b93c596523cdcc_JaffaCakes118
Size

119KB
MD5

879ca012f0c9d9a869b93c596523cdcc
SHA1

9211363133b9de0e3d4eca6a53c59744674c8b84
SHA256

269222ca2a8c46ca87ca1c7ff0df7bc89463715d20bff1268b0f8d5aee1511d4
SHA512

05afa56d94e1eb2f6339302acc3f602fe337cd0320ef150d911b35c0e250f08e115890577b5f57bbcae24c9ab6d0a4b483f639c127cc576dfaabd01c6977849e
SSDEEP

768:8WHHVJVuN+Yu91uE6TcSVe47fMzliZdVb7wyW6lr+0Zmeq1F15FCNs:8GniDiiZdxhWEyeMFrFM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
879ca012f0c9d9a869b93c596523cdcc_JaffaCakes118

Files

879ca012f0c9d9a869b93c596523cdcc_JaffaCakes118
.exe windows:1 windows x86 arch:x86

9302e11cf2cf6d9b8347925b26e88584

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
GetStartupInfoW
InterlockedIncrement
LocalAlloc
GetVersionExA
LoadLibraryW
GetCommandLineW
InitializeCriticalSection
DeleteCriticalSection
GetStartupInfoA
LoadLibraryA
InterlockedIncrement
InterlockedDecrement
GetTickCount
FormatMessageW
SetLastError
GetCurrentThreadId
TerminateProcess
SetEvent
FreeLibrary
DeleteCriticalSection
FormatMessageW
EnterCriticalSection
GetCurrentProcess
MultiByteToWideChar
HeapReAlloc
VirtualFree
GetCurrentProcessId
QueryPerformanceCounter
LoadLibraryA
MultiByteToWideChar
UnhandledExceptionFilter
Sleep
GetCurrentThreadId
InitializeCriticalSection
QueryPerformanceCounter
ExitProcess
InterlockedDecrement
HeapDestroy
GetSystemTimeAsFileTime
UnhandledExceptionFilter
GetStartupInfoA
GetTickCount
lstrcmpiW
CloseHandle
GetProcAddress
QueryPerformanceCounter
WriteFile
lstrlenW
GetCommandLineW
VirtualFree
CreateFileW
HeapReAlloc
lstrcmpiW
VirtualFree
EnterCriticalSection
InterlockedDecrement
GetCommandLineA
UnhandledExceptionFilter
GetModuleHandleW
GetACP
GetCurrentProcessId
GetModuleHandleA
LoadLibraryA
GetModuleHandleW
GetCommandLineA
InterlockedIncrement
HeapAlloc
lstrcpyW
WideCharToMultiByte
QueryPerformanceCounter
GetModuleHandleW
GetModuleHandleA
HeapReAlloc
HeapAlloc
LocalAlloc
ExitProcess
LoadLibraryA
SetFilePointer
CreateFileW
CreateThread
HeapDestroy
GetSystemTimeAsFileTime
WriteFile
GetModuleHandleA
GetACP
LocalAlloc
HeapAlloc
SetUnhandledExceptionFilter
lstrcmpiW
GetSystemTimeAsFileTime
CreateFileW
HeapAlloc
HeapDestroy
SetFilePointer
GetCurrentProcess
lstrcmpiW
SetEvent
GetModuleFileNameA
LoadLibraryA
QueryPerformanceCounter
GetLastError
WaitForSingleObject
lstrlenW
GetACP
CloseHandle
FormatMessageW
WaitForSingleObject
SetFilePointer
Sleep
SetUnhandledExceptionFilter
LocalFree
HeapDestroy
ReadFile
lstrcpyW
HeapFree
LeaveCriticalSection
GetACP
GetLastError
GetModuleHandleW
InterlockedIncrement
ExitProcess
LocalFree
LocalAlloc
WideCharToMultiByte

Sections

.data
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 512B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9302e11cf2cf6d9b8347925b26e88584

Headers

File Characteristics

Imports

kernel32

Sections

.data Size: 102KB - Virtual size: 120KB

.data Size: 1024B - Virtual size: 4KB

.data Size: 1KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

Size: 512B - Virtual size: 512B

.data
Size: 102KB - Virtual size: 120KB

.data
Size: 1024B - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB