8e24d4016c22ecd6e559214a00e28f30_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8e24d4016c22ecd6e559214a00e28f30_JaffaCakes118
Size

173KB
MD5

8e24d4016c22ecd6e559214a00e28f30
SHA1

7e8082406ceaa9c33a3cf2d14cda148ee6d820d1
SHA256

7299caa8c3629788dc20da3fca2bf7a41fd2ffbb1dad454397ae370f5033973a
SHA512

b610216b810175df274800484b5a2a77c11edb77efc61e1ae8a593e956c36afb68c2e6be1f48b52fb6b8d94781675c788dfecef59289cd6718d7948c88692b98
SSDEEP

3072:Kh4BmSwuBnRerdZ4cUx4uvcObTQwlk9fd17Au5uFICh:KY/wuBnUjUxKLtP7A6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8e24d4016c22ecd6e559214a00e28f30_JaffaCakes118

Files

8e24d4016c22ecd6e559214a00e28f30_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b16f2925486c4ba84cbe1d7d6d1aa435

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

ole32

CoTaskMemFree
CoTaskMemRealloc
CoCreateInstance
CoUninitialize
CoTaskMemAlloc
CoInitialize

msvfw32

ICInfo

shell32

SHGetSpecialFolderLocation
ShellExecuteW
SHGetPathFromIDListW

kernel32

CreateFileA
IsProcessorFeaturePresent
CreateProcessW
FreeEnvironmentStringsA
GetModuleHandleA
FlushFileBuffers
lstrcmpA
CloseHandle
lstrlenA
GetTempFileNameW
LocalAlloc
InitializeCriticalSection
GetVDMCurrentDirectories
GetModuleFileNameA
WritePrivateProfileSectionW
CreateFileW
VirtualFree
GetFileAttributesW
GetStringTypeW
GetSystemTimeAsFileTime
IsDebuggerPresent
GetSystemDirectoryW
Sleep
GetCurrentThreadId
SizeofResource
TlsFree
GetLastError
GetACP
GetEnvironmentStrings
GetProcessHeap
GetVersionExW
FreeLibrary
FreeEnvironmentStringsW
InterlockedIncrement
GetFileType
LCMapStringA
WriteConsoleW
LoadLibraryW
LoadResource
WideCharToMultiByte
GetConsoleOutputCP
SetLastError
HeapAlloc
SetThreadPriorityBoost
EnterCriticalSection
TlsGetValue
VirtualAlloc
GetVersionExA
RaiseException
HeapReAlloc
GetEnvironmentStringsW
GetProcAddress
GetStdHandle
InterlockedDecrement
GetConsoleMode
GetModuleFileNameW
LoadLibraryA
HeapDestroy
DeleteFileW
ExitProcess
EnumResourceNamesW
ReadFile
WriteFile
GetFileSize
InterlockedCompareExchange
FindResourceW
GetStringTypeA
GetCurrentProcess
LeaveCriticalSection
RtlUnwind
InterlockedExchange
TerminateProcess
HeapCreate
SetFilePointer
GetTickCount
SetHandleCount
HeapSize
GetOEMCP
GetTempPathW
MulDiv
GetModuleHandleW
UnmapViewOfFile
TlsSetValue
MultiByteToWideChar
LoadLibraryExW
LocalFree
GetCommandLineA
GetCommandLineW
GetLocaleInfoA
CreateSemaphoreW
GetDriveTypeW
lstrcmpiW
SetStdHandle
CopyFileW
MapViewOfFile
FlushInstructionCache
LockResource
WaitForSingleObject
GetCPInfo
LCMapStringW
GetThreadLocale
TlsAlloc
CreateFileMappingW
GetVersion
UnhandledExceptionFilter
QueryPerformanceCounter
WriteConsoleA
SetUnhandledExceptionFilter
GetCurrentProcessId
DeleteCriticalSection
GetStartupInfoW
GetStartupInfoA
HeapFree
GetConsoleCP
lstrlenW

gdi32

CreateFontIndirectW
GetDeviceCaps
DeleteObject

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

user32

SetWindowTextW
GetWindowRect
SetDlgItemTextW
GetDC
GetDlgItemTextW
GetWindowTextLengthW
RegisterClassExW
BeginPaint
EndPaint
GetWindow
GetParent
GetClientRect
GetWindowInfo
SetCapture
DispatchMessageW
DestroyWindow
GetDlgItem
SetWindowPos
TranslateMessage
LoadCursorW
PeekMessageW
CreateWindowExW
MessageBoxW
MapWindowPoints
GetClassInfoExW
SystemParametersInfoW
EndDialog

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idive
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b16f2925486c4ba84cbe1d7d6d1aa435

Headers

File Characteristics

Imports

ole32

msvfw32

shell32

kernel32

gdi32

version

user32

Sections

.text Size: 89KB - Virtual size: 88KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 77KB - Virtual size: 77KB

.idive Size: 1024B - Virtual size: 116KB

.text
Size: 89KB - Virtual size: 88KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 77KB - Virtual size: 77KB

.idive
Size: 1024B - Virtual size: 116KB