8c81c177822864cb1c022a003e4e4a4f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8c81c177822864cb1c022a003e4e4a4f_JaffaCakes118
Size

142KB
MD5

8c81c177822864cb1c022a003e4e4a4f
SHA1

669d6cd0a4a4990892fdc100e905b950a976de82
SHA256

e921e70da775e9bddd1c1384d5277b8ce9df8edb039c969e75373a8310c259b3
SHA512

7afa75edca01670a298789a2f778e54c238ca33e992fe74e22384e7e2813195d7f6ad3bb8cb8966779e0225b7ea39cc1a0510ca3121a84d21eebd4088b5742b3
SSDEEP

3072:y5ASe/BgfPGYIiuo5wLvxDp8Tj9bb+rshvVxuhk:WiBgnGYIjNDQpZVx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8c81c177822864cb1c022a003e4e4a4f_JaffaCakes118

Files

8c81c177822864cb1c022a003e4e4a4f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f81b1f5a68ec74cc2c0dd2c326ed3f44

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHFileOperationA
SHGetFolderPathA
SHGetDiskFreeSpaceA

kernel32

GetFileType
lstrlenW
FormatMessageA
VirtualAlloc
GetFileSize
LocalReAlloc
LoadLibraryA
EnterCriticalSection
WideCharToMultiByte
CompareStringA
SetEvent
SetErrorMode
ExitProcess
GetOEMCP
GetCommandLineW
RaiseException
EnumCalendarInfoA
GetProcessHeap
GetStringTypeA
VirtualAllocEx
CreateFileA
SizeofResource
lstrcmpA
GetCurrentProcess
LoadLibraryExA

ole32

CoGetObjectContext
ReleaseStgMedium
MkParseDisplayName
OleRegGetUserType

user32

MessageBoxA
SystemParametersInfoA
SetScrollRange
EnumThreadWindows
DrawEdge
LoadCursorA
SetClassLongA
EnableScrollBar
DefWindowProcA
ScrollWindow
AdjustWindowRectEx
LoadStringA
GetTopWindow
DestroyCursor
IsIconic
FindWindowA
GetWindow
CharLowerA
LoadIconA
GetCapture
SetParent
UnhookWindowsHookEx
OemToCharA
DrawAnimatedRects
DestroyMenu
DrawIconEx
GetScrollRange
KillTimer
MapVirtualKeyA
RemovePropA
GetMenu
GetMessagePos
IsWindow
GetDCEx
GetIconInfo
CharToOemA
EqualRect
GetWindowDC
IsCharUpperA
EnableMenuItem
IsChild
LoadBitmapA
DestroyWindow
ClientToScreen
GetSystemMetrics
IsRectEmpty
GetForegroundWindow
SetWindowTextA
OpenIcon
DefMDIChildProcA
GetWindowTextLengthA
ShowWindow
DrawMenuBar
LoadKeyboardLayoutA
PostMessageA
CharNextA
ScreenToClient
DrawIcon
GetWindowRect
RemoveMenu
CreateWindowExA
GetClipboardData
InvalidateRect
GetActiveWindow

Exports

Exports

_624_0

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.badata
Size: 1024B - Virtual size: 833B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f81b1f5a68ec74cc2c0dd2c326ed3f44

Headers

File Characteristics

Imports

shell32

kernel32

ole32

user32

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.rdata Size: 11KB - Virtual size: 86KB

.data Size: 95KB - Virtual size: 95KB

.edata Size: 4KB - Virtual size: 3KB

.badata Size: 1024B - Virtual size: 833B

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 21KB - Virtual size: 20KB

.rdata
Size: 11KB - Virtual size: 86KB

.data
Size: 95KB - Virtual size: 95KB

.edata
Size: 4KB - Virtual size: 3KB

.badata
Size: 1024B - Virtual size: 833B

.rsrc
Size: 8KB - Virtual size: 8KB