c14f68145e0eb4bf8ad7c866a70da0b0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c14f68145e0eb4bf8ad7c866a70da0b0_JaffaCakes118
Size

481KB
MD5

c14f68145e0eb4bf8ad7c866a70da0b0
SHA1

9d8f9ee7686362c480862ea597f9fac5b8ef34ef
SHA256

695d3c211c92527078e4d2edea9de4c8f99f3aee49b9eb67eeda5e0a0588ddd7
SHA512

8799ac4a87624e8051649571094d18a34eafe7aeeb95633c63e7223dfaeb2bd9d391b07f9951866e10985cd8fa6bf2f6a4d1cf3cd9740dc205980eaace35ec86
SSDEEP

12288:4VvstWr5awSYyGPoKk8PBZlCDd9OwY/dDc7:q+WrIeZPP7blAO/lc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c14f68145e0eb4bf8ad7c866a70da0b0_JaffaCakes118

Files

c14f68145e0eb4bf8ad7c866a70da0b0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0439ebca7c1a7cd4445c5eaa639143ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenuInfo
RegisterClassA
IsCharAlphaNumericW
ImpersonateDdeClientWindow
IsDialogMessageA
LoadStringW
DragDetect
FindWindowA
GetDesktopWindow
RegisterClassExA
EnableMenuItem
GetListBoxInfo
DrawStateW
OpenDesktopA

kernel32

RtlUnwind
GetEnvironmentStrings
SetFilePointer
GetModuleHandleA
ExitProcess
GetTempPathW
GetCurrentProcessId
GetModuleFileNameW
WideCharToMultiByte
SetHandleCount
InterlockedDecrement
GetLocalTime
CompareStringW
EnterCriticalSection
GetCommandLineW
QueryPerformanceCounter
GetProfileStringW
WriteFile
TlsSetValue
LCMapStringA
MultiByteToWideChar
GetSystemTimeAsFileTime
HeapFree
LCMapStringW
VirtualAlloc
DeleteCriticalSection
GetCPInfo
HeapReAlloc
TerminateProcess
FreeEnvironmentStringsW
TlsGetValue
UnhandledExceptionFilter
GetTimeZoneInformation
InterlockedIncrement
FreeEnvironmentStringsA
GetCurrentProcess
GetEnvironmentStringsW
GetLastError
GetStartupInfoW
GetProcAddress
GetCommandLineA
HeapAlloc
CloseHandle
GetTickCount
LeaveCriticalSection
GetCurrentThread
SetEnvironmentVariableA
InterlockedExchange
TlsFree
GetSystemTime
ReadFile
GetStringTypeW
SetLastError
GetStdHandle
GetVersion
GetStartupInfoA
GetFileType
SetStdHandle
InitializeCriticalSection
GetCurrentThreadId
VirtualQuery
TlsAlloc
CompareStringA
LoadLibraryA
GetStringTypeA
OpenMutexA
HeapDestroy
HeapCreate
GetModuleFileNameA
VirtualFree
FlushFileBuffers
IsBadWritePtr
CreateMutexA

comctl32

InitCommonControlsEx

Sections

.text
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 314KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0439ebca7c1a7cd4445c5eaa639143ff

Headers

File Characteristics

Imports

user32

kernel32

comctl32

Sections

.text Size: 156KB - Virtual size: 156KB

.rdata Size: 3KB - Virtual size: 10KB

.data Size: 314KB - Virtual size: 314KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 156KB - Virtual size: 156KB

.rdata
Size: 3KB - Virtual size: 10KB

.data
Size: 314KB - Virtual size: 314KB

.rsrc
Size: 6KB - Virtual size: 5KB