a5d51741d0e65a4c7d3da0dc3daaaa2a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a5d51741d0e65a4c7d3da0dc3daaaa2a_JaffaCakes118
Size

119KB
MD5

a5d51741d0e65a4c7d3da0dc3daaaa2a
SHA1

2072b16c952233f47c6d5900976ca37cdeceae01
SHA256

9ef864f4a4e5d39f7ede0728e7adc1a8431a2f301f83831b126f9734171ea087
SHA512

4e7a22c02556cb75e2602e94f11093c82e78fa6768d33b71ab85239f92d2fd25ce154386413e732c46ab989420f6a04d490ffa56b43f925d25c5793bc94678b8
SSDEEP

768:3EBOv1nB+qWxOXvgnR5aPKVNBxaJ2ti0ucS8WSOf64DJghzbTR6WnOBFIB:3EBqCOXvKqXJYi0ucBy64DJxw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5d51741d0e65a4c7d3da0dc3daaaa2a_JaffaCakes118

Files

a5d51741d0e65a4c7d3da0dc3daaaa2a_JaffaCakes118
.exe windows:1 windows x86 arch:x86

fa3bc78d7c5cfc1ebb60e85f43e82884

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
GetCurrentProcessId
LoadLibraryW
CloseHandle
QueryPerformanceCounter
GetStartupInfoW
FormatMessageW
GetSystemTimeAsFileTime
GetCommandLineW
GetLastError
LocalAlloc
GetCommandLineW
LoadLibraryW
LoadLibraryW
TerminateProcess
QueryPerformanceCounter
lstrcpyW
ExitProcess
GetCurrentThreadId
SetUnhandledExceptionFilter
GetLastError
LocalFree
LoadLibraryA
LocalFree
ReadFile
HeapReAlloc
lstrcmpiW
TerminateProcess
SetEvent
MultiByteToWideChar
GetTickCount
GetModuleHandleW
GetProcAddress
Sleep
GetModuleHandleW
LocalFree
WaitForSingleObject
GetProcessHeap
InitializeCriticalSection
GetCommandLineW
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
lstrlenW
lstrcpyW
GetModuleFileNameA
TerminateProcess
DeleteCriticalSection
GetSystemTimeAsFileTime
EnterCriticalSection
TerminateProcess
GetProcessHeap
DeleteCriticalSection
GetModuleHandleW
TerminateProcess
CreateFileW
GetModuleFileNameA
GetProcAddress
GetCommandLineA
GetCommandLineW
LoadLibraryA
lstrlenW
InterlockedIncrement
SetFilePointer
LocalAlloc
DeleteCriticalSection
LocalFree
GetACP
LoadLibraryA
UnhandledExceptionFilter
CreateThread
HeapDestroy
SetFilePointer
InterlockedIncrement
InterlockedDecrement
GetStartupInfoA
GetLastError
GetTickCount
FormatMessageW
LoadLibraryA
SetLastError
GetACP
LoadLibraryW
WriteFile
GetModuleFileNameA
VirtualAlloc
LoadLibraryA
GetStartupInfoA
GetStartupInfoW
GetCurrentThreadId
GetStartupInfoW
WaitForSingleObject
FreeLibrary
WideCharToMultiByte
SetUnhandledExceptionFilter
CloseHandle
LoadLibraryW
FormatMessageW
SetLastError
GetProcAddress
GetSystemTimeAsFileTime
CloseHandle
GetTickCount
ReadFile
FormatMessageW
LocalFree
SetUnhandledExceptionFilter
InterlockedDecrement
LocalFree
HeapFree
SetFilePointer
TerminateProcess
FormatMessageW
GetSystemTimeAsFileTime
VirtualAlloc
GetTickCount
CloseHandle
WideCharToMultiByte
LocalAlloc
SetEvent
QueryPerformanceCounter
lstrlenW
InterlockedIncrement
GetLastError
lstrcmpiW
HeapReAlloc
CreateThread
GetProcAddress
InterlockedDecrement
lstrlenW
GetCurrentProcess
InterlockedDecrement
WaitForSingleObject
SetEvent
GetModuleFileNameA
MultiByteToWideChar
LoadLibraryA
CloseHandle
WaitForSingleObject
GetModuleHandleW
DeleteCriticalSection
VirtualAlloc
FreeLibrary
SetEvent
GetCurrentProcessId
VirtualFree
SetEvent
VirtualFree
GetCurrentProcess
LoadLibraryA
lstrlenW
GetCommandLineW
SetFilePointer
CreateThread
GetACP
GetCurrentProcessId
SetFilePointer
WaitForSingleObject
ReadFile
VirtualFree
SetLastError
GetModuleFileNameA
FormatMessageW
HeapReAlloc
MultiByteToWideChar
UnhandledExceptionFilter
GetStartupInfoA
GetModuleHandleW
GetCurrentProcessId
LocalFree
HeapAlloc
Sleep
GetLastError
lstrlenW
DeleteCriticalSection
HeapAlloc
WaitForSingleObject
lstrcmpiW
GetCurrentThreadId
MultiByteToWideChar
GetStartupInfoW
InterlockedIncrement
VirtualFree
InterlockedDecrement
GetSystemTimeAsFileTime
GetModuleHandleA
SetUnhandledExceptionFilter
VirtualAlloc
WideCharToMultiByte
GetProcAddress
GetCurrentThreadId
FreeLibrary
HeapReAlloc
GetModuleHandleW
HeapReAlloc
GetModuleFileNameA
lstrcmpiW
InterlockedIncrement
GetSystemTimeAsFileTime
LeaveCriticalSection
SetLastError
CreateFileW
HeapDestroy
LoadLibraryW
WriteFile
Sleep
GetTickCount
HeapFree
LoadLibraryW
InterlockedIncrement
GetTickCount
SetFilePointer
lstrcpyW
GetModuleFileNameA
Sleep
SetLastError
GetProcAddress
LocalFree
InterlockedIncrement
LoadLibraryA
GetProcAddress
LocalAlloc
GetVersionExA
lstrlenW
GetProcAddress

Sections

.data
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fa3bc78d7c5cfc1ebb60e85f43e82884

Headers

File Characteristics

Imports

kernel32

Sections

.data Size: 102KB - Virtual size: 120KB

.data Size: 1024B - Virtual size: 4KB

.data Size: 1KB - Virtual size: 4KB

.data Size: 6KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data
Size: 102KB - Virtual size: 120KB

.data
Size: 1024B - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 4KB

.data
Size: 6KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB