95c0f4bbd9ebbe51035fbbdccfb91720_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

95c0f4bbd9ebbe51035fbbdccfb91720_JaffaCakes118
Size

250KB
MD5

95c0f4bbd9ebbe51035fbbdccfb91720
SHA1

95aa22e00218842e6562bec5894f66c0d77a4b5d
SHA256

d4958a264364d4cec33dd854b78734bea4fd03212c0cdb09954d83f4f3dbc6c6
SHA512

b660cea4c78e3fcdc3d3e162d6ba8af5e1dbf37318e771b5ca70d1e908da199987702269e75ba79cdc3452167f93cfba5d4cbff4f2bd1c02d9197454916cd308
SSDEEP

3072:CJC9lMLHDHoxr6oRb/1jxDPEJMIgLZHTLXuckL0k8do+evNzt7VErWcHOozozl7o:FPcD78b/6MNlzkQd01zdqrsfBVXoD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
95c0f4bbd9ebbe51035fbbdccfb91720_JaffaCakes118

Files

95c0f4bbd9ebbe51035fbbdccfb91720_JaffaCakes118
.exe windows:4 windows x86 arch:x86

42e2abf365fcc53a62023b3fc5d04fb7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoW
GetVersionExA
HeapDestroy
SetEnvironmentVariableA
GetProcAddress
HeapSize
HeapReAlloc
SetLastError
CompareStringA
GetProcessHeap
GetCurrentProcessId
Sleep
CopyFileA
GetDateFormatA
TlsAlloc
VirtualFree
InitializeCriticalSection
OpenEventW
TlsFree
WideCharToMultiByte
GetFileType
TlsSetValue
DeleteCriticalSection
GetStringTypeW
InterlockedIncrement
WriteProfileSectionA
GetModuleFileNameW
IsDebuggerPresent
WaitNamedPipeW
ExitProcess
GetTickCount
EnumDateFormatsExW
SetUnhandledExceptionFilter
HeapFree
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
LoadLibraryA
QueryPerformanceCounter
FreeEnvironmentStringsA
VirtualAlloc
SetLocaleInfoA
CompareStringW
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetCommandLineA
GetEnvironmentStrings
GetLocaleInfoA
LeaveCriticalSection
TlsGetValue
HeapCreate
EnterCriticalSection
GetSystemTimeAsFileTime
GetCommandLineW
CreateFileA
GetPrivateProfileIntA
GetCurrentThread
GetEnvironmentStringsW
GetDriveTypeW
SetConsoleCtrlHandler
IsValidCodePage
GetStringTypeA
GetACP
GetLastError
MultiByteToWideChar
EnumDateFormatsW
GetUserDefaultLCID
SetHandleCount
GetLocaleInfoW
GlobalFlags
InterlockedExchange
GetStartupInfoA
WriteFile
EnumSystemLocalesA
IsValidLocale
GetCPInfo
FreeResource
InterlockedDecrement
GetTimeZoneInformation
HeapAlloc
LCMapStringW
FreeLibrary
GetLogicalDrives
GetTimeFormatA
VirtualQuery
GetModuleHandleA
LCMapStringA
GetOEMCP

gdi32

GdiGetBatchLimit
FlattenPath
EnumEnhMetaFile
ResetDCW
GetCharacterPlacementA
CreateDIBitmap
GetCharABCWidthsW
LPtoDP
SelectClipRgn
CreateFontA
GetEnhMetaFileBits
CopyEnhMetaFileW
GetObjectType
GetWindowExtEx
CreatePen

Sections

.text
Size: 129KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

42e2abf365fcc53a62023b3fc5d04fb7

Headers

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 129KB - Virtual size: 128KB

.data Size: 114KB - Virtual size: 122KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 129KB - Virtual size: 128KB

.data
Size: 114KB - Virtual size: 122KB

.rsrc
Size: 6KB - Virtual size: 6KB