acc43214d748c98320faf3fb60d727de_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

acc43214d748c98320faf3fb60d727de_JaffaCakes118
Size

578KB
MD5

acc43214d748c98320faf3fb60d727de
SHA1

a16032a5fac3b62a34c119d77cf95bea1929282b
SHA256

4204f208b68f96699f024bea211ba30f5710e5eb085fc4359b83acea37a522cd
SHA512

ae0c75149fdbab12e32df0ecfca859d5cb2d2e258dad865a38e41869d0f85741209b735d13eb7b1edc44c82665f197e78ceb5bc67d82f571e0835abb44d249cc
SSDEEP

12288:7p6MlatzEgITY0PjT4pm9zUXNaLUrNwkM:7p6iatggITYcym94XwLNkM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
acc43214d748c98320faf3fb60d727de_JaffaCakes118

Files

acc43214d748c98320faf3fb60d727de_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a4996df58b00a55632ca0f6791dea923

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleOutputCP
LCMapStringW
FreeEnvironmentStringsW
LeaveCriticalSection
InterlockedDecrement
UnhandledExceptionFilter
CreateRemoteThread
RtlUnwind
FreeEnvironmentStringsA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
HeapSize
GetProcAddress
InitializeCriticalSection
GetLastError
VirtualFree
GetModuleFileNameA
IsValidCodePage
SetEnvironmentVariableA
GetConsoleCP
GetCurrentThreadId
GetTimeZoneInformation
SetConsoleCtrlHandler
GetStdHandle
GetCPInfo
HeapFree
GetStringTypeA
ExitProcess
EnterCriticalSection
TlsAlloc
GetProcessHeap
TlsFree
GetSystemTimeAsFileTime
IsValidLocale
HeapDestroy
GetFileType
ReadFile
GetCommandLineA
GetUserDefaultLCID
GetStartupInfoA
TlsGetValue
CompareStringA
WriteFile
DeleteCriticalSection
GetModuleHandleA
GetCurrentThread
CreateMutexA
InterlockedIncrement
WriteConsoleA
GetEnvironmentStrings
LCMapStringA
HeapAlloc
TlsSetValue
DuplicateHandle
IsDebuggerPresent
Sleep
TerminateProcess
VirtualAlloc
SetUnhandledExceptionFilter
GetVersionExA
GetEnvironmentStringsW
GetCurrentProcess
SetHandleCount
GetTimeFormatA
GetACP
MultiByteToWideChar
SetFilePointer
HeapReAlloc
FreeLibrary
VirtualQuery
EnumSystemLocalesA
LoadLibraryA
CreateFileA
GetDateFormatA
WideCharToMultiByte
OpenMutexA
CloseHandle
GetLocaleInfoW
GetCurrentProcessId
QueryPerformanceCounter
GetTickCount
GetConsoleMode
HeapCreate
InterlockedExchange
FlushFileBuffers
CompareStringW
SetLastError
GetOEMCP
WriteConsoleW

comctl32

InitCommonControlsEx

user32

DefWindowProcA
GetWindowInfo
SetScrollRange
DefDlgProcA
RegisterClassA
MessageBoxExA
SetMenuItemBitmaps
VkKeyScanExA
GetClipCursor
MapVirtualKeyW
EnumDisplaySettingsW
CallMsgFilterW
RegisterClipboardFormatW
CallWindowProcA
ClipCursor
RegisterClassExA
UnloadKeyboardLayout
SetCursorPos
EndPaint
GetDlgItemTextA
InvalidateRgn
BeginPaint

Sections

.text
Size: 235KB - Virtual size: 235KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 319KB - Virtual size: 318KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a4996df58b00a55632ca0f6791dea923

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 235KB - Virtual size: 235KB

.rdata Size: 9KB - Virtual size: 19KB

.data Size: 319KB - Virtual size: 318KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 235KB - Virtual size: 235KB

.rdata
Size: 9KB - Virtual size: 19KB

.data
Size: 319KB - Virtual size: 318KB

.rsrc
Size: 13KB - Virtual size: 12KB