b9858c40fdfb45ae8dcb80be18e618de_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b9858c40fdfb45ae8dcb80be18e618de_JaffaCakes118
Size

686KB
MD5

b9858c40fdfb45ae8dcb80be18e618de
SHA1

fa3ebd1aa6d02e0b05de41a284ff0b1d35d64a2d
SHA256

f9b23c57524df62a78818b71267be35f7cfdcad0dda2f1dfc729d2f48d159c5f
SHA512

ccf9e48351ebf7b2fc12c5e3cd48e7c9bfaa9e7bbd63f0abdece794f04c4e51abb4fb345a958c2c53bf99a106b8fa59e233235d46c103058070e610a80db1cb7
SSDEEP

12288:7W8m9WbGiPkw0hQx5/mInqzmyiRrwvjbrV4SRxQsmMBdEGws5YGWKji0rklk0:7W8lqt4xRmIqzm7JgjFfvBdEGws5fuPl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9858c40fdfb45ae8dcb80be18e618de_JaffaCakes118

Files

b9858c40fdfb45ae8dcb80be18e618de_JaffaCakes118
.exe windows:4 windows x86 arch:x86

030a37415ce27897d48cc5342693a2a7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\EJED\DGRNDPX\GAGEVVVDRE\VETSA

Imports

kernel32

GetFileType
GetTickCount
GetCommandLineA
GetModuleHandleW
LoadLibraryW
GetStringTypeA
GetConsoleCP
VirtualQuery
SetEndOfFile
GetLocaleInfoA
HeapReAlloc
CreateFileMappingW
QueryPerformanceCounter
HeapFree
VirtualAlloc
SetConsoleCtrlHandler
GlobalFix
DeleteCriticalSection
GetUserDefaultLCID
InterlockedDecrement
GetLastError
GetModuleFileNameW
IsValidLocale
GetTempPathW
GetDiskFreeSpaceExA
GetEnvironmentStringsW
SetConsoleCursorInfo
TlsFree
GetConsoleOutputCP
lstrlenA
SetHandleCount
GetOEMCP
CreateFileA
CompareStringA
lstrcmpA
InterlockedIncrement
GetTimeZoneInformation
CompareStringW
GetCurrentThread
IsDebuggerPresent
GetCurrentProcessId
GetCPInfo
LCMapStringA
GetCurrentThreadId
FreeEnvironmentStringsW
TlsAlloc
GetCurrentProcess
LoadLibraryA
lstrcmpiA
OutputDebugStringW
GetConsoleMode
SystemTimeToTzSpecificLocalTime
HeapSize
HeapValidate
WriteConsoleW
LeaveCriticalSection
GetStringTypeW
GetConsoleScreenBufferInfo
IsValidCodePage
OpenMutexA
HeapCreate
FindFirstFileA
WideCharToMultiByte
GetEnvironmentStrings
TlsSetValue
GetStartupInfoA
DeleteFileW
FreeLibrary
FlushFileBuffers
GetStdHandle
SetEnvironmentVariableA
SetUnhandledExceptionFilter
IsBadReadPtr
CreateMutexA
ReadFile
SetStdHandle
LCMapStringW
HeapDestroy
SetEnvironmentVariableW
Sleep
GetLocaleInfoW
TerminateThread
TlsGetValue
GetSystemTimeAsFileTime
UnhandledExceptionFilter
GetProcAddress
DebugBreak
RtlUnwind
FreeEnvironmentStringsA
VirtualFree
ExitProcess
CloseHandle
GetModuleHandleA
RaiseException
SetFilePointer
HeapAlloc
GetModuleFileNameA
WriteFile
MoveFileA
GetProcessHeap
MultiByteToWideChar
GetTimeFormatA
WriteConsoleA
InterlockedExchange
SetLastError
OutputDebugStringA
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
TerminateProcess
EnumSystemLocalesA
GetACP
GetDateFormatA

comctl32

InitCommonControlsEx

gdi32

GetCharWidthA
StartDocA
CreateEllipticRgn
ResizePalette
Polyline
GetTextMetricsW
ScaleViewportExtEx
SaveDC
GetROP2
SetAbortProc
GetBkColor
GetBkMode
GetBitmapBits
GetCharWidth32W
DeleteColorSpace
StrokePath

user32

PostThreadMessageA
GetTabbedTextExtentW
DestroyAcceleratorTable
MessageBoxIndirectW
UnhookWindowsHookEx
AdjustWindowRectEx
CharLowerW
RegisterClassExA
DdeGetData
CreateCursor
IsZoomed
RegisterClassA
SetUserObjectSecurity
DdeFreeStringHandle

Sections

.text
Size: 452KB - Virtual size: 452KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 109KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

030a37415ce27897d48cc5342693a2a7

Headers

File Characteristics

PDB Paths

Imports

kernel32

comctl32

gdi32

user32

Sections

.text Size: 452KB - Virtual size: 452KB

.rdata Size: 109KB - Virtual size: 126KB

.data Size: 108KB - Virtual size: 107KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 452KB - Virtual size: 452KB

.rdata
Size: 109KB - Virtual size: 126KB

.data
Size: 108KB - Virtual size: 107KB

.rsrc
Size: 16KB - Virtual size: 15KB