a67d1763ec63a779aae51e803db3f4da_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a67d1763ec63a779aae51e803db3f4da_JaffaCakes118
Size

523KB
MD5

a67d1763ec63a779aae51e803db3f4da
SHA1

e24703c35898fc3ccb65d14087ae2537906ce24b
SHA256

ad39e5c39238af3a25234a20d2743e0da92a31e594066e9b37431e34933bcc5b
SHA512

d79447a0e8dccf6225b452f8fa69f548728b1b752a02af273586b4d204d831c8c1034d65fe356c142dc338dae585bd8a96e4c80259e74a66cfaa613939d013c6
SSDEEP

12288:Ef4e011Zeua0vo4QzDbvqvRe/YtydKgjlcwKzS:EAe03Zeua8cbSvRe/YtV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a67d1763ec63a779aae51e803db3f4da_JaffaCakes118

Files

a67d1763ec63a779aae51e803db3f4da_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cb974f659e71aa36c2ee2bca4e8ca61d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
GetStringTypeA
GetEnvironmentStringsW
GlobalSize
GetSystemInfo
EnumCalendarInfoW
VirtualProtect
TlsFree
GetTickCount
GetOEMCP
GetCurrentProcess
GetProcAddress
FlushFileBuffers
VirtualQuery
GetFileType
HeapAlloc
CompareStringA
TlsGetValue
SetFilePointer
GetTimeFormatA
GetStartupInfoA
EnumSystemCodePagesA
LeaveCriticalSection
SetConsoleScreenBufferSize
CloseHandle
GetACP
SetLastError
GetStdHandle
WriteFile
GetEnvironmentStrings
GetCommandLineA
GetUserDefaultLCID
RtlUnwind
CreateWaitableTimerA
ExitProcess
MoveFileA
VirtualAlloc
SetCriticalSectionSpinCount
GetDateFormatA
GetCurrentProcessId
SetStdHandle
CompareStringW
CreateNamedPipeA
QueryPerformanceCounter
TlsAlloc
HeapCreate
GetTimeZoneInformation
InitializeCriticalSection
HeapReAlloc
GetModuleHandleA
GetModuleFileNameA
LCMapStringW
InterlockedExchange
OpenMutexA
UnhandledExceptionFilter
IsValidCodePage
GetCurrentThreadId
FreeEnvironmentStringsW
GetVersionExA
EnumResourceTypesW
GetLocaleInfoA
TlsSetValue
GetLocaleInfoW
IsValidLocale
WideCharToMultiByte
GetStringTypeW
EnumSystemLocalesA
GetCPInfo
SetEnvironmentVariableA
GetSystemTimeAsFileTime
ReadFile
TerminateProcess
VirtualFree
EnterCriticalSection
CreateMutexA
LCMapStringA
DeleteCriticalSection
HeapDestroy
FreeEnvironmentStringsA
GetCurrentThread
FindClose
MultiByteToWideChar
LoadLibraryA
HeapFree
IsBadWritePtr
GetLastError
SetHandleCount

user32

BeginDeferWindowPos
SetSystemCursor
GetClassNameA
GetSysColorBrush
EndMenu
SetCaretBlinkTime
RegisterClassA
RegisterClassExA
MessageBeep
GetUserObjectInformationA
DrawEdge
WaitForInputIdle
SendIMEMessageExA
SetClassWord
MessageBoxExW
SetWindowContextHelpId

comctl32

InitCommonControlsEx

Sections

.text
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cb974f659e71aa36c2ee2bca4e8ca61d

Headers

File Characteristics

Imports

kernel32

user32

comctl32

Sections

.text Size: 192KB - Virtual size: 192KB

.rdata Size: 8KB - Virtual size: 36KB

.data Size: 313KB - Virtual size: 313KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 192KB - Virtual size: 192KB

.rdata
Size: 8KB - Virtual size: 36KB

.data
Size: 313KB - Virtual size: 313KB

.rsrc
Size: 8KB - Virtual size: 8KB