b265307bfc657daa3bca7b6acadc3ba5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b265307bfc657daa3bca7b6acadc3ba5_JaffaCakes118
Size

406KB
MD5

b265307bfc657daa3bca7b6acadc3ba5
SHA1

2220e8f11304b5238fbb5b7d3ef2f4f80c31b617
SHA256

4ab183cc7a9fa1517178e3f9060509eadb1c2ee6d9d94023865113ce724e70d2
SHA512

44ea8d99caf6b5756e1bbc0e5e606f9d30fc9e5cac12206e22d906f06fe50c5fa5beb7ff4ca1ef602010396f6452ca3a8139933e4e45b0e59b52b9e1b26c68b0
SSDEEP

6144:gCQEv2B2LxGEGuydf7AR8TQ7xmuc+ekvKfFZjKI6SEPuxsucD:gvg2B8Guydf7V8Dc+jvwFZjK9S3Zi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b265307bfc657daa3bca7b6acadc3ba5_JaffaCakes118

Files

b265307bfc657daa3bca7b6acadc3ba5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2d167f6cfced449ae4fc54457dbbc532

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
CreateNamedPipeA
GetConsoleOutputCP
VirtualQuery
GetCommandLineA
IsValidLocale
CreateDirectoryA
CloseHandle
GetTickCount
FlushFileBuffers
GetFileAttributesExW
DeleteCriticalSection
CreateDirectoryW
SetLastError
HeapSize
VirtualAllocEx
GetLastError
WriteConsoleA
SetEnvironmentVariableA
HeapFree
GetModuleFileNameA
TerminateProcess
ExitProcess
GetFileType
GetLocaleInfoA
CompareStringA
HeapReAlloc
LCMapStringA
InitializeCriticalSectionAndSpinCount
WaitForMultipleObjects
HeapCreate
GetCurrentThread
FindFirstFileA
TlsSetValue
InterlockedExchange
GetStdHandle
WideCharToMultiByte
HeapDestroy
SetConsoleCtrlHandler
OpenMutexA
GetDateFormatA
SetStdHandle
GlobalFlags
FreeEnvironmentStringsW
GetTimeZoneInformation
VirtualAlloc
GetUserDefaultLCID
GetTempFileNameA
GetConsoleCP
CompareStringW
SetHandleCount
GetSystemTimeAsFileTime
VirtualFree
IsValidCodePage
GetACP
GetCurrentProcessId
TlsAlloc
CreateFileW
LoadLibraryA
QueryPerformanceCounter
ReadFile
LeaveCriticalSection
WriteConsoleW
GetTimeFormatA
LoadLibraryW
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
CreateMutexA
GetStringTypeW
GetStringTypeA
EnterCriticalSection
EnumSystemLocalesA
MultiByteToWideChar
CreateFileA
DebugBreak
GetCPInfo
RtlUnwind
GetConsoleMode
LCMapStringW
TlsFree
TlsGetValue
EnumTimeFormatsA
ReadConsoleA
GetModuleHandleW
SetUnhandledExceptionFilter
GetOEMCP
WriteFile
GetProcAddress
FreeLibrary
SetFilePointer
InterlockedDecrement
IsDebuggerPresent
GetEnvironmentStringsW
FindResourceExA
HeapAlloc
Sleep
GetLocaleInfoW
GetCurrentThreadId
GetModuleHandleA
UnhandledExceptionFilter
GetCurrentProcess

user32

RegisterClassA
SetCaretPos
RegisterClassExA
CreateAcceleratorTableA

comctl32

InitCommonControlsEx

Sections

.text
Size: 181KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 207KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2d167f6cfced449ae4fc54457dbbc532

Headers

File Characteristics

Imports

kernel32

user32

comctl32

Sections

.text Size: 181KB - Virtual size: 180KB

.rdata Size: 9KB - Virtual size: 33KB

.data Size: 207KB - Virtual size: 207KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 181KB - Virtual size: 180KB

.rdata
Size: 9KB - Virtual size: 33KB

.data
Size: 207KB - Virtual size: 207KB

.rsrc
Size: 7KB - Virtual size: 7KB