a1cf9b39bbcb5610ece65b52664fb560_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a1cf9b39bbcb5610ece65b52664fb560_JaffaCakes118
Size

286KB
MD5

a1cf9b39bbcb5610ece65b52664fb560
SHA1

70833d361fd2f6624a00b941cbf6ceda59c7275d
SHA256

4ce415c0283351278e334ed4a4dd12a0cd101ed5f62d69139a7d4bf0cec8f9a2
SHA512

64ca55536e787840511c467d77d684ced68cc8e0d50b6e5a13cadff86940e997d67702153bdc513d9a5ffff5c61a8280260ca130b87c9a9d494073c4e86d0a0f
SSDEEP

6144:v0WjuB36hX5ovNHXw+j6tExzgy+QmyxdswB04DKY7Z:vxuJAX5Sg+j66Bg7QmWdDRK4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a1cf9b39bbcb5610ece65b52664fb560_JaffaCakes118

Files

a1cf9b39bbcb5610ece65b52664fb560_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2828a5a39decf4fc387fa3c0394dfea4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
HeapFree
GetProcessHeap
ReadFile
GetModuleFileNameW
CreateFileW
CloseHandle
CopyFileW
ExpandEnvironmentStringsW
FreeLibrary
GetModuleHandleW
LoadLibraryW
FreeLibraryAndExitThread
GetProcAddress
DeleteFileW
LoadLibraryA
AllocConsole
WaitForSingleObject
SetFilePointer
CreateProcessA
GetStartupInfoA
ContinueDebugEvent
WaitForDebugEvent
IsDebuggerPresent
WriteFile
GetEnvironmentVariableW
GetModuleHandleA
GetVersionExA
SetEnvironmentVariableA
CompareStringW
SetStdHandle
CreateFileA
WriteConsoleW
Beep
Sleep
GetExitCodeProcess
SetConsoleCtrlHandler
HeapReAlloc
IsValidLocale
GetCommandLineA
ExitProcess
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InterlockedCompareExchange
InterlockedExchange
MultiByteToWideChar
EncodePointer
DecodePointer
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLastError
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
PeekConsoleInputA
GetNumberOfConsoleInputEvents
GetSystemTimeAsFileTime
GetCommandLineW
HeapSetInformation
GetCPInfo
RaiseException
RtlUnwind
LCMapStringW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
HeapCreate
HeapDestroy
GetFileAttributesA
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
GetCurrentThread
InitializeCriticalSectionAndSpinCount
FatalAppExitA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoW
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetStringTypeW
GetLocaleInfoW
GetACP
GetOEMCP
IsValidCodePage
HeapSize
GetConsoleCP
FlushFileBuffers
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
SetEndOfFile

user32

wsprintfW
FindWindowA
ShowWindow
GetAsyncKeyState

gdi32

BitBlt

ole32

CoUninitialize
CoInitialize
CoCreateInstance

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 178KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.coode
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cooode
Size: 512B - Virtual size: 223B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2828a5a39decf4fc387fa3c0394dfea4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

iphlpapi

Sections

.text Size: 178KB - Virtual size: 178KB

.coode Size: 8KB - Virtual size: 8KB

.cooode Size: 512B - Virtual size: 223B

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 6KB - Virtual size: 18KB

.rsrc Size: 46KB - Virtual size: 45KB

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 178KB - Virtual size: 178KB

.coode
Size: 8KB - Virtual size: 8KB

.cooode
Size: 512B - Virtual size: 223B

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 6KB - Virtual size: 18KB

.rsrc
Size: 46KB - Virtual size: 45KB

.reloc
Size: 9KB - Virtual size: 9KB