ae7e6a7c2012a0758fc9746853b3bfe0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ae7e6a7c2012a0758fc9746853b3bfe0_JaffaCakes118
Size

76KB
MD5

ae7e6a7c2012a0758fc9746853b3bfe0
SHA1

0b4b4611dfa360a068eeee42300cb77fcb2c9908
SHA256

7b145c884cce639b61d6ae3b0d23246c71dfd13a82b8f2e78ed7deaabe81aab2
SHA512

8135c23b321ad743d6ff990f834b3f2aec06e27459c8035d14406224c322bc30b2aa397d72ce804dd0b43461c03da407a7c75e66960ebd337fb117b89af0224a
SSDEEP

768:7uXh2Jr4rYMnjVxjrX+OjwcZFJmQb/KL6AhWqfMOn7PGJpkwqQMjfb4aW5tQIvSh:Oh214DnjpSL9hWqj7PupkwUpcFatf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ae7e6a7c2012a0758fc9746853b3bfe0_JaffaCakes118

Files

ae7e6a7c2012a0758fc9746853b3bfe0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

82ee9ac7d340f76a16f3fb669e5ef01f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
SetConsoleTitleA
GetTickCount
FormatMessageA
WriteConsoleW
GetConsoleOutputCP
lstrlenA
CreateFileA
WriteFile
GlobalFree
GlobalAlloc
SetEvent
LoadLibraryA
GetProcAddress
OpenProcess
FreeLibrary
TerminateProcess
SetEnvironmentVariableA
GetModuleFileNameA
GetVersionExA
CreateProcessA
Sleep
WaitForSingleObject
CloseHandle
CreateEventA
SetCurrentDirectoryA
FindFirstFileA
CopyFileA
GetCurrentProcessId
FindClose
WriteConsoleA
SetFilePointer
GetModuleHandleA
ExitProcess
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
GetStdHandle
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
MultiByteToWideChar
LCMapStringW
SetHandleCount
GetFileType
GetStartupInfoA
RtlUnwind
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetSystemTimeAsFileTime
HeapSize
GetLocaleInfoA
CompareStringA
CompareStringW
VirtualAlloc
HeapReAlloc
GetStringTypeA
GetStringTypeW
SetStdHandle
GetConsoleCP
GetConsoleMode
FlushFileBuffers

user32

wsprintfA

advapi32

StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
SetServiceStatus
RegisterEventSourceA
ReportEventA
DeregisterEventSource
OpenServiceA
ControlService
QueryServiceStatus
DeleteService
OpenSCManagerA
CreateServiceA
CloseServiceHandle
StartServiceA
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

shell32

ShellExecuteExA

Sections

.text
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

82ee9ac7d340f76a16f3fb669e5ef01f

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

Sections

.text Size: 48KB - Virtual size: 46KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 48KB - Virtual size: 46KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 4KB - Virtual size: 2KB