be3be6f51fcd4d0f1d103803aa93fb65_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

be3be6f51fcd4d0f1d103803aa93fb65_JaffaCakes118
Size

91KB
MD5

be3be6f51fcd4d0f1d103803aa93fb65
SHA1

ad62360d9c42e7917e93f9c7448b9925f8d6e942
SHA256

7ae66329824cacb015294df8a27a7991c436931d6ca0882c8e1c2c9c40b932e5
SHA512

843e6e88a7d61fe9f77d6f701f92b5523c872afa03a81d31ff127c49f820fd83b180e75b29cef45e7ff15a82f2ed7a52f4069e60af3bcc4ab0c819b77472fe52
SSDEEP

1536:jOUXMGY4TvWgrofHoh6wZPgYONedqrXqihj+Cdx9ZIlj:vpSgMfHohQraaao9ZIlj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be3be6f51fcd4d0f1d103803aa93fb65_JaffaCakes118

Files

be3be6f51fcd4d0f1d103803aa93fb65_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a3e3c8e5c6463fded46c8ae862153646

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
LocalFree
GetModuleHandleA
GetTickCount
GlobalAlloc
LoadLibraryA
GetLocalTime
GetFileSize
LocalAlloc
VirtualFree
SystemTimeToFileTime
CloseHandle
WriteFile
CopyFileA
ReadFile
GetSystemInfo
SuspendThread
CreateThread
FreeResource
SizeofResource
LockResource
LoadResource
FindResourceExA
VirtualProtect
VirtualAlloc
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
HeapReAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
RtlUnwind
HeapFree
HeapCreate
Sleep
SetLastError
lstrcpyA
CreateFileA
LoadLibraryExW
GetProcAddress
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
GetLastError
FreeEnvironmentStringsA
VirtualQuery
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
GetStringTypeW

user32

CreateWindowExA
GetDC
GetDesktopWindow
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassExA
SetWindowRgn
ReleaseDC
IsWindow
IsWindowEnabled
ShowWindow

gdi32

GetObjectA
DeleteObject
CreateCompatibleBitmap
GetDIBits
CreatePenIndirect

ole32

CoUninitialize

oleaut32

VariantCopy
VariantInit

lz32

LZClose

msvfw32

ICSendMessage

avifil32

AVIClearClipboard

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 316KB - Virtual size: 717KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a3e3c8e5c6463fded46c8ae862153646

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

oleaut32

lz32

msvfw32

avifil32

Sections

.text Size: 32KB - Virtual size: 29KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 20KB - Virtual size: 18KB

.rsrc Size: 316KB - Virtual size: 717KB

.text
Size: 32KB - Virtual size: 29KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 20KB - Virtual size: 18KB

.rsrc
Size: 316KB - Virtual size: 717KB