a5c00ad989ee446da5f6b8626810ea9f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a5c00ad989ee446da5f6b8626810ea9f_JaffaCakes118
Size

3.8MB
MD5

a5c00ad989ee446da5f6b8626810ea9f
SHA1

c80ba99385dae502050a1b2796412f1e4f60537a
SHA256

f3cfdf3a2c9441f36ea6356e8e5067fbd21fb7b662e42ac5b8c6ae36066a489d
SHA512

e76530915df8efc535db095c614af26edac0fcbe61e43d54f415596740584abc02625484e59b84142f4110df5d67dabc0c6cfeb2fd102062ebd4caed4ae7d75c
SSDEEP

98304:O5rN2lh3KG1fg9yCihbka77s0oLToepZ:ONsLKm49yhbd77s0IZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5c00ad989ee446da5f6b8626810ea9f_JaffaCakes118

Files

a5c00ad989ee446da5f6b8626810ea9f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f2473b6e977d09f9aeecb657d8a0e0a7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceNamesW
SearchPathW
SetFilePointer
SetLocalTime
BuildCommDCBAndTimeoutsA
LoadResource
SetUnhandledExceptionFilter
InterlockedIncrement
ReadConsoleA
CompareFileTime
SetDefaultCommConfigW
SetEnvironmentVariableW
WaitForSingleObject
CallNamedPipeW
SetTapeParameters
IsBadReadPtr
SetCommState
GetPriorityClass
Sleep
CopyFileW
GetPrivateProfileStructW
SetSystemTimeAdjustment
GetFileAttributesA
FileTimeToDosDateTime
GetACP
lstrlenW
DisconnectNamedPipe
FreeLibraryAndExitThread
GetCurrentDirectoryW
SetLastError
GetProcAddress
SetStdHandle
SetFileApisToOEM
LoadLibraryA
LocalAlloc
WaitForMultipleObjects
_lread
GetModuleHandleA
lstrcatW
FreeEnvironmentStringsW
FindAtomW
GetProfileSectionW
lstrcpyA
CreateSemaphoreA
ExitProcess
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
GetLastError
DeleteFileA
GetModuleFileNameW
GetStartupInfoW
HeapValidate
RaiseException
RtlUnwind
TlsGetValue
GetModuleHandleW
TlsAlloc
TlsSetValue
GetCurrentThreadId
TlsFree
DebugBreak
GetStdHandle
WriteFile
OutputDebugStringA
WriteConsoleW
GetFileType
OutputDebugStringW
LoadLibraryW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetStartupInfoA
HeapDestroy
HeapCreate
HeapFree
VirtualFree
GetModuleFileNameA
FlushFileBuffers
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
HeapAlloc
HeapSize
HeapReAlloc
VirtualAlloc
GetOEMCP
GetCPInfo
IsValidCodePage
InitializeCriticalSectionAndSpinCount
MultiByteToWideChar
WriteConsoleA
GetConsoleOutputCP
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
CloseHandle
CreateFileA

Exports

Exports

_gifgeek@8

Sections

.text
Size: 134KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 43.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f2473b6e977d09f9aeecb657d8a0e0a7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 134KB - Virtual size: 133KB

.rdata Size: 3.7MB - Virtual size: 3.7MB

.data Size: 7KB - Virtual size: 43.5MB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 134KB - Virtual size: 133KB

.rdata
Size: 3.7MB - Virtual size: 3.7MB

.data
Size: 7KB - Virtual size: 43.5MB

.rsrc
Size: 11KB - Virtual size: 10KB