8a88d9e253685b0f46e2860e20ab9c68_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8a88d9e253685b0f46e2860e20ab9c68_JaffaCakes118
Size

615KB
MD5

8a88d9e253685b0f46e2860e20ab9c68
SHA1

f7e51c35cbb0f9ecec16eb2a1f12685567e07e48
SHA256

11f9dc5154e351ffe65a9870486ac4e8720d0e84c27eea4d506d141def656632
SHA512

f53861fafad4a59b1925e40a417549cbf7da061d346b363df7d0100bca3439885deecf4ea63846d24921f5178d4592f0b8ebf04ed636d94fef534b64f24c1b66
SSDEEP

12288:SK1c/wl50Pi6ILxzYlbjqDuhr+cfDrdN/RBFvlmevg6oFN:Xq/wliPMz2bjk4/DpBF9msg6S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a88d9e253685b0f46e2860e20ab9c68_JaffaCakes118

Files

8a88d9e253685b0f46e2860e20ab9c68_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4665ea663f65da29c4cc808d894b4c51

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
ReadFile
SetFilePointer
TlsFree
RaiseException
GetCurrentThread
GetCommandLineA
HeapSize
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
LCMapStringW
GetLastError
InterlockedIncrement
GetProcessHeap
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
RemoveDirectoryA
GlobalLock
FindNextFileA
lstrcpyA
lstrcmpA
CompareStringW
GetStartupInfoW
GetProcAddress
DeleteFileW
SetEvent
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
TlsAlloc
GetTickCount
QueryPerformanceCounter
FreeLibrary
LoadLibraryW
SetHandleCount
HeapFree
LeaveCriticalSection
GetCurrentThreadId
SetEndOfFile
CreateEventW
GetACP
GetVersion
WriteConsoleA
TerminateProcess
GetSystemDirectoryA
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
CreateMutexA
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
ExitProcess
IsDebuggerPresent
GetModuleFileNameW
InterlockedDecrement
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
LocalFree
GetOEMCP
SetFileAttributesA
GetStringTypeW
GetSystemTimeAsFileTime
InterlockedExchange
GetStringTypeA
GetCPInfo
SetStdHandle
FreeEnvironmentStringsW
SetErrorMode
LocalAlloc
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
WaitForSingleObject
GetFileAttributesA
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
VirtualAlloc
EnterCriticalSection
WideCharToMultiByte
SetLastError
GetEnvironmentVariableA
HeapDestroy
RtlUnwind
HeapReAlloc
GetModuleHandleW
IsValidCodePage
HeapCreate
WriteFile
VirtualFree
GlobalAlloc
Sleep

user32

SetTimer
SetWindowTextA
SetWindowLongA
ReleaseCapture
PostMessageA
GetWindowRect
GetSystemMetrics
DefWindowProcA
KillTimer
SetFocus
DispatchMessageA
CreateWindowExA
GetWindowLongA
IsWindowEnabled
TranslateMessage
PeekMessageA
EnableWindow
ShowWindow
GetParent
DestroyWindow
GetClientRect
GetDC
SetWindowPos
ReleaseDC
MoveWindow
ScreenToClient
LoadIconA
FillRect
MessageBoxA
GetFocus
SendMessageA
GetDlgItem

gdi32

SelectObject
CreateCompatibleDC
SetTextColor
GetStockObject
DeleteDC
CreateSolidBrush

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 564KB - Virtual size: 564KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4665ea663f65da29c4cc808d894b4c51

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 564KB - Virtual size: 564KB

.data Size: 23KB - Virtual size: 26KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 564KB - Virtual size: 564KB

.data
Size: 23KB - Virtual size: 26KB

.rsrc
Size: 6KB - Virtual size: 5KB