bebbd36bb9de4b7b454e72aa3295f9b4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bebbd36bb9de4b7b454e72aa3295f9b4_JaffaCakes118
Size

1.4MB
MD5

bebbd36bb9de4b7b454e72aa3295f9b4
SHA1

0e07769aa2e3c943f00e1c983c22768fa4f45d30
SHA256

436bce430bd3e0a3abea40a7b9f17590515e98798e01cf409556cfcf67029ae4
SHA512

9e7aa4334fec924056efd327b7059164ca4bbc19ce16efe82c189001209d2c4cd51d04fa38d0cc05f409388b481c3dca2bec5f0f66555490dd16274a5c747f04
SSDEEP

24576:GE27Hef0zLiVibWWwpDz+cFLf9rOmy328TFcja9xHP2npK9O4lWzWfN:K4iKHDzFLlrOtnx9xOnc3lEWfN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bebbd36bb9de4b7b454e72aa3295f9b4_JaffaCakes118

Files

bebbd36bb9de4b7b454e72aa3295f9b4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8614cf3a4c3adaec2f122f1a71345b53

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEvent
GetExitCodeThread
CreateThread
CreateEventA
CreateDirectoryA
LocalFree
SetCurrentDirectoryA
GetCurrentDirectoryA
CopyFileA
SetFileTime
ReadFile
LocalAlloc
GetFileSize
WriteFile
SetFilePointer
CreateFileA
LockResource
LoadResource
SizeofResource
FindResourceA
DeleteFileA
GetTempPathA
GetTickCount
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
FlushFileBuffers
SetStdHandle
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
CreateProcessA
GetExitCodeProcess
GetFileAttributesA
IsBadWritePtr
HeapReAlloc
VirtualAlloc
GetLastError
WaitForSingleObject
CloseHandle
SetEndOfFile
VirtualFree
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
HeapAlloc
HeapFree
GetProcAddress
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate

user32

SendMessageA
SendDlgItemMessageA
SetDlgItemTextA
GetDlgItem
UpdateWindow
wsprintfA
SetWindowTextA
LoadIconA
IsDialogMessageA
PostMessageA
DestroyIcon
PostQuitMessage
CreateDialogParamA
MessageBoxA
ShowWindow
GetMessageA
DispatchMessageA
TranslateMessage

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

comctl32

InitCommonControlsEx

ole32

CoTaskMemFree

Sections

.text
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8614cf3a4c3adaec2f122f1a71345b53

Headers

File Characteristics

Imports

kernel32

user32

shell32

comctl32

ole32

Sections

.text Size: 60KB - Virtual size: 57KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 16KB - Virtual size: 25KB

.rsrc Size: 1.3MB - Virtual size: 1.3MB

.text
Size: 60KB - Virtual size: 57KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 16KB - Virtual size: 25KB

.rsrc
Size: 1.3MB - Virtual size: 1.3MB