b01299cd584e86c6c469ed7383267beb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b01299cd584e86c6c469ed7383267beb_JaffaCakes118
Size

162KB
MD5

b01299cd584e86c6c469ed7383267beb
SHA1

e8c8e2280845e44cb88cc319d42a3c753ae1aee1
SHA256

415368fbc4804c262fda6f74929dde442236c778e80118545b33c608faa67b2e
SHA512

fea9168b9c1a3166f31343ca6645ee7abc92a4b297435a21603de629b7ab8a559e0f2b0f6077abf1bc299631c6db692a5f77110b9925038ef0604f0d8ad92cb5
SSDEEP

768:sETJ0nOIbnhteqbiM922SY/L2fKcZu8N8vRi0RQLjVpU62B/mOMRYziyvuWgjmyR:tJ0OITZD/L2y0u8WRivjqm0imjvp/+X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b01299cd584e86c6c469ed7383267beb_JaffaCakes118

Files

b01299cd584e86c6c469ed7383267beb_JaffaCakes118
.exe windows:1 windows x86 arch:x86

87434dbcc79e0b1a424666089212920e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
ReadFile
WriteFile
InterlockedIncrement
QueryPerformanceCounter
LocalFree
GetSystemTimeAsFileTime
InterlockedDecrement
GetSystemTimeAsFileTime
GetModuleHandleA
GetProcessHeap
InitializeCriticalSection
CreateThread
CreateThread
SetFilePointer
FreeLibrary
VirtualFree
InitializeCriticalSection
FreeLibrary
GetModuleHandleW
GetStartupInfoW
VirtualAlloc
LoadLibraryA
SetLastError
lstrcpyW
GetProcessHeap
GetCommandLineW
GetModuleHandleA
SetEvent
FreeLibrary
VirtualFree
WriteFile
GetModuleHandleA
LocalFree
GetStartupInfoW
InterlockedDecrement
QueryPerformanceCounter
CreateThread
UnhandledExceptionFilter
ReadFile
LoadLibraryW
GetCurrentThreadId
Sleep
VirtualFree
ReadFile
QueryPerformanceCounter
WriteFile
HeapReAlloc
GetCurrentProcessId
GetCommandLineW
GetStartupInfoW
SetLastError
FormatMessageW
CloseHandle
CreateThread
VirtualFree
MultiByteToWideChar
CloseHandle
GetSystemTimeAsFileTime
HeapReAlloc
TerminateProcess
FormatMessageW
InterlockedDecrement
WriteFile
GetStartupInfoA
VirtualFree
GetLastError
EnterCriticalSection
HeapDestroy
GetModuleHandleA
SetLastError
lstrcpyW
GetStartupInfoW
GetVersionExA

user32

MessageBoxW
GetWindowRect
EnableMenuItem
RegisterClassExW
LoadImageW
GetSysColor
GetDlgItemTextW
MessageBoxW
LoadStringA
SetRect
MapWindowPoints
GetDC
wsprintfA
SetFocus
GetWindowTextW
GetMenu
GetMessageW
RegisterClassW
GetDC
MessageBoxA
GetWindowTextW
GetParent
IsDlgButtonChecked
MapWindowPoints
CheckDlgButton
RegisterClassW
GetWindowTextW
EnableWindow
DestroyWindow
RegisterClassExW
SetWindowTextW
LoadMenuW
DrawTextW
ShowWindow
MessageBeep

Sections

Size: 143KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�vmp0
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

�reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

87434dbcc79e0b1a424666089212920e

Headers

File Characteristics

Imports

kernel32

user32

Sections

Size: 143KB - Virtual size: 156KB

Size: 3KB - Virtual size: 4KB

Size: 2KB - Virtual size: 4KB

�vmp0 Size: 4KB - Virtual size: 3KB

.rsrc Size: 1024B - Virtual size: 4KB

�reloc Size: 2KB - Virtual size: 4KB

�reloc Size: 1KB - Virtual size: 4KB

�reloc Size: 3KB - Virtual size: 4KB

�vmp0
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 1024B - Virtual size: 4KB

�reloc
Size: 2KB - Virtual size: 4KB

�reloc
Size: 1KB - Virtual size: 4KB

�reloc
Size: 3KB - Virtual size: 4KB