a0e031ad2258f9f3d18a8c3aa55f9b2d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a0e031ad2258f9f3d18a8c3aa55f9b2d_JaffaCakes118
Size

394KB
MD5

a0e031ad2258f9f3d18a8c3aa55f9b2d
SHA1

20c4c951bd0e6e8a74a4f26dca24f88b68806754
SHA256

92bdfd55d2a4225d33f1392856899bdc10c07e09bfc1c258a03402db13fff290
SHA512

b48135190608e4d2f0e612687aa33ad71858bf448cf3510c415983e5cebc0339c42ef813bb9f517dfab3f43a1af40fa43d5aee306740edc1577b03354476687b
SSDEEP

12288:9GhfKni/MwYe7PTh1bcbSmTBb+pDrKL3md/v:WfaiEwYgo2i+sLg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a0e031ad2258f9f3d18a8c3aa55f9b2d_JaffaCakes118

Files

a0e031ad2258f9f3d18a8c3aa55f9b2d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2936be6aa7bc73e0c22f4a86a4cb55c6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

TranslateAcceleratorW
GetDlgItem
GetSystemMetrics
PostQuitMessage
EndDialog
EndPaint
LoadAcceleratorsW
GetDC
LoadCursorW
SetDlgItemInt
SetWindowPos
LoadStringW
EnableMenuItem
BeginPaint
CreateWindowExW
UpdateWindow
FlashWindow

advapi32

RegDeleteValueW
RegQueryValueExA
RegSetValueExW
RegQueryValueExW

msvcrt

time
_adjust_fdiv
_controlfp
srand
_XcptFilter
_except_handler3

kernel32

DisconnectNamedPipe
CreateFileMappingA
lstrcpynW
RegisterWaitForSingleObjectEx
WaitForSingleObject
OpenThread
lstrcmpiA
HeapSize
SetFilePointerEx
SystemTimeToFileTime
RtlFillMemory
SetThreadIdealProcessor
UnmapViewOfFile
SetThreadLocale
GetFileTime
lstrcpyA
SetLastError
HeapCompact
InitializeCriticalSection
GetThreadPriorityBoost
ReadFile
SetEnvironmentVariableA
GetStringTypeA
GetLocaleInfoA
GetThreadSelectorEntry
CreateNamedPipeA
FlushViewOfFile
EnterCriticalSection
lstrcmpA
SetThreadUILanguage
IsValidLocale
GetSystemDefaultLangID
GetTickCount
ExpandEnvironmentStringsA
SwitchToThread
InterlockedExchange
HeapDestroy
GetStringTypeExA
GetThreadIOPendingFlag
MapViewOfFile
CopyFileA
WriteFile
FreeEnvironmentStringsA
HeapCreate
GetEnvironmentStringsA
lstrcatW
IsBadStringPtrA
SetThreadPriorityBoost
EnumSystemLanguageGroupsA
IsValidLanguageGroup
CreateFileA
GetUserDefaultLCID
CreateMutexA
VirtualAllocEx
MapViewOfFileEx
ConvertDefaultLocale
HeapSummary
ConnectNamedPipe
WriteFileGather
HeapFree
GetThreadContext
GetSystemDefaultLCID
FileTimeToLocalFileTime
GetSystemTimeAdjustment
GetSystemTime
HeapWalk
GetSystemTimes
SetThreadContext
HeapSetInformation
GetNamedPipeHandleStateA
LeaveCriticalSection
HeapLock
HeapAlloc
lstrcpynA
GetThreadPriority
lstrlenW
DeleteCriticalSection
SetThreadAffinityMask
TransactNamedPipe
WaitForMultipleObjects
SetFilePointer
HeapQueryInformation

Sections

.text
Size: 241KB - Virtual size: 241KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 143KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 388KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2936be6aa7bc73e0c22f4a86a4cb55c6

Headers

DLL Characteristics

File Characteristics

Imports

user32

advapi32

msvcrt

kernel32

Sections

.text Size: 241KB - Virtual size: 241KB

.data Size: 143KB - Virtual size: 143KB

.rsrc Size: 9KB - Virtual size: 388KB

.text
Size: 241KB - Virtual size: 241KB

.data
Size: 143KB - Virtual size: 143KB

.rsrc
Size: 9KB - Virtual size: 388KB