88ccd64657940df73e83d2c206618cbf_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

88ccd64657940df73e83d2c206618cbf_JaffaCakes118
Size

428KB
MD5

88ccd64657940df73e83d2c206618cbf
SHA1

ee97fab64eebea102e72dd8460bda2191d392ebe
SHA256

c970c25936b7ad57272e5e778560200bf48d4f254cfd12c5740b311c560f61e2
SHA512

cfa6f8fe31e49c8d98e5655bd712bdbba99927c3d4daea7b3b79da41e009d2ce1749ceb03ff1350b6c6f33051cffe14121c8c968a8dc9dd66e9726dc6259d583
SSDEEP

6144:3x7pm9876RV8Gmqok8GZcSEXYcAuDgy1EWdZI9jauzqVSJPCqT4Uadpew5QTm:3DLY83q9cZYcX02uzqVSjTG85

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88ccd64657940df73e83d2c206618cbf_JaffaCakes118

Files

88ccd64657940df73e83d2c206618cbf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

65dafed7e155eb9804487c31d2b31206

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
VirtualProtect
InterlockedCompareExchange
FlushFileBuffers
FindNextFileA
ReleaseMutex
GetProcAddress
InterlockedDecrement
SetStdHandle
GetCommandLineA
SetEvent
WriteConsoleW
ReadFile
RemoveDirectoryA
GetConsoleMode
CloseHandle
FreeEnvironmentStringsA
GetVersionExA
TlsFree
SetEnvironmentVariableA
UnmapViewOfFile
FreeLibrary
GlobalUnlock
GlobalFree
GetLocalTime
GetEnvironmentStrings
IsDebuggerPresent
GetSystemTimeAsFileTime
FindNextFileW
GetStringTypeW
HeapFree
HeapReAlloc
EnterCriticalSection
FindClose
CreateProcessA
MapViewOfFile
FindFirstFileA
WritePrivateProfileStringA
DeleteCriticalSection
SetLastError
CreateFileW
CreateFileA
CreateEventW
FileTimeToLocalFileTime
LeaveCriticalSection
SetUnhandledExceptionFilter
VirtualFree
VirtualAlloc
TlsGetValue
UnhandledExceptionFilter
InterlockedIncrement
QueryPerformanceCounter
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
lstrlenA
lstrlenW
GetStartupInfoA
GetCommandLineW
Sleep
GetModuleFileNameA
FileTimeToSystemTime
lstrcmpiA
GetSystemInfo
GetLocaleInfoA
CompareStringA
CompareStringW
GetStringTypeA
GetLastError
RaiseException
GetTickCount
GetVersion
GetCurrentThreadId
HeapDestroy
CreateThread
FormatMessageA
GlobalLock
InitializeCriticalSection
WriteFile
SizeofResource
FindResourceW
LoadLibraryExW
GetStdHandle
GetFileAttributesA
GetFileSize
CreateFileMappingA
TlsAlloc
GetTimeZoneInformation
SetFilePointer
GetCurrentThread
TerminateProcess
GetConsoleCP
HeapCreate
GetTempPathA
GetACP
IsValidCodePage
SetErrorMode
SetHandleCount
WriteConsoleA
LockResource
GlobalAlloc
GetFileAttributesW
CreateEventA
GetCPInfo
SetEndOfFile
LoadLibraryW
InterlockedExchange
GetCurrentDirectoryA
LoadResource
FindResourceA
GetModuleHandleW
LoadLibraryA
GetEnvironmentStringsW
LCMapStringW
WaitForSingleObject
GetThreadLocale
GetSystemDirectoryA
GetOEMCP
GetConsoleOutputCP
LoadLibraryExA
GetProcessHeap
HeapAlloc
VirtualQuery
FormatMessageW
GetFileType
GetCurrentProcessId
GetModuleFileNameW
GetCurrentProcess
LocalFree
LocalAlloc
HeapSize
GetDriveTypeA
GetModuleHandleA
ExitProcess
FreeEnvironmentStringsW
ResetEvent
DeleteFileW
lstrcpynA
MulDiv
TlsSetValue

user32

GetSystemMenu
EndPaint
EnableWindow
InvalidateRect
IsIconic
IsWindow
SetTimer
CallWindowProcA
LoadBitmapA
DispatchMessageA
GetDC
SetWindowLongA
GetCursorPos
SendMessageA
ScreenToClient
SetForegroundWindow
PostQuitMessage
DestroyWindow
GetSubMenu
GetSystemMetrics
GetDlgItem
EndDialog
GetFocus
MessageBoxA
GetParent
CreateWindowExA
RegisterClassA
LoadStringA
FillRect
ReleaseDC
SetWindowTextA
GetWindow
SetFocus
GetSysColor
PostMessageA
TranslateMessage
GetWindowRect
KillTimer
LoadIconA
GetClientRect
EnableMenuItem
ShowWindow
SetWindowPos
DefWindowProcA
BeginPaint
LoadCursorA
GetWindowLongA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA

oleaut32

VariantClear
SysFreeString
SysStringLen
SysAllocStringLen

advapi32

RegDeleteKeyA
RegCreateKeyExW
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

ole32

CoUninitialize
CoTaskMemFree
CoInitialize

msvcrt

_controlfp

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 360KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

65dafed7e155eb9804487c31d2b31206

Headers

File Characteristics

Imports

kernel32

user32

version

oleaut32

advapi32

ole32

msvcrt

Sections

.text Size: 45KB - Virtual size: 45KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 360KB - Virtual size: 360KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 45KB - Virtual size: 45KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 360KB - Virtual size: 360KB

.rsrc
Size: 5KB - Virtual size: 4KB