8e70fd8ef5a2e222041aed619059d89e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8e70fd8ef5a2e222041aed619059d89e_JaffaCakes118
Size

52KB
MD5

8e70fd8ef5a2e222041aed619059d89e
SHA1

85e22c27f1b2a90d7f475018962f7d21aac16cd6
SHA256

471452ca713b1ec5b075236829f95e57ff49e8ffb82fefc6f4d9124ab2689c14
SHA512

724efbccb7280df6522bc3b258301250c96149d9b098df0eac2bcc49b0e27fc1810ec3dee22f8ed59a9e046d765f3cb7ec68a87ea3ad2daf11f573667ff9413a
SSDEEP

1536:0bvOkiTl6IO5lKrkoM4DUMRdts5+95r6g8:UGRl6IqshHrtS+v+P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8e70fd8ef5a2e222041aed619059d89e_JaffaCakes118

Files

8e70fd8ef5a2e222041aed619059d89e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

160d0ffb2ff0d58cadf49f3ae9bf23d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PrintDlgA
GetOpenFileNameA
GetSaveFileNameA

wininet

HttpQueryInfoW
InternetCrackUrlW
InternetCloseHandle
DeleteUrlCacheEntryW
InternetCombineUrlW

user32

DestroyMenu
ShowOwnedPopups
GetAsyncKeyState
CharUpperA
GetMessageTime
GetMessageA
PostQuitMessage
wvsprintfA
ValidateRect

ole32

StgIsStorageFile
CoRevokeClassObject
CoUninitialize
CoInitialize
OleSetClipboard
OleDuplicateData
StgOpenStorage

kernel32

GetDriveTypeA
GetCurrentThreadId
SystemTimeToFileTime
SetEnvironmentVariableA
FindNextFileA
GlobalWire
ReadFile
WaitForMultipleObjects
DuplicateHandle
SetEvent
GetTickCount
SetLastError
GetSystemTimeAsFileTime
GetEnvironmentVariableA
GlobalFindAtomA
WriteFile
GetShortPathNameW
Sleep
CreateProcessA
LocalFileTimeToFileTime
IsValidLanguageGroup
GetCurrentProcess
CopyFileExW
ReleaseActCtx
GetDiskFreeSpaceA
GetVersionExA
GetNumberFormatA
EnumSystemCodePagesW
GetCommandLineA
FormatMessageA
DeleteFileA
CloseHandle
GetPrivateProfileIntW
SetHandleInformation
FindFirstFileA
GetExitCodeProcess
LeaveCriticalSection
GetCurrentProcessId
EnterCriticalSection
GetSystemTime
SetEndOfFile
DeviceIoControl
GetThreadTimes
GlobalGetAtomNameA
SetFileTime
SetErrorMode
TerminateProcess
CreateFileA
GetFileSize
DeleteCriticalSection
GlobalDeleteAtom
QueryPerformanceCounter
HeapFree
GetProcessHeap
CopyFileA
GetProcAddress
GetFileAttributesA
GetSystemDirectoryA
SetFileAttributesA
HeapAlloc
SetUnhandledExceptionFilter
GlobalFlags
LCMapStringA
SetFilePointer
SwitchToThread
OpenEventA
MoveFileA
FlushFileBuffers
GlobalAddAtomA
LCMapStringW
QueryDosDeviceA
GetModuleFileNameA
GetCurrentDirectoryA
DosDateTimeToFileTime
FindClose
MoveFileExA
CreateEventW

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 139KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

160d0ffb2ff0d58cadf49f3ae9bf23d0

Headers

File Characteristics

Imports

comdlg32

wininet

user32

ole32

kernel32

Sections

.text Size: 8KB - Virtual size: 7KB

.data Size: 7KB - Virtual size: 119KB

.debug Size: 5KB - Virtual size: 5KB

.pdata Size: 139KB - Virtual size: 251KB

.text
Size: 8KB - Virtual size: 7KB

.data
Size: 7KB - Virtual size: 119KB

.debug
Size: 5KB - Virtual size: 5KB

.pdata
Size: 139KB - Virtual size: 251KB