c261a9090fd2e7d5ad6102fe85a61f68_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c261a9090fd2e7d5ad6102fe85a61f68_JaffaCakes118
Size

117KB
MD5

c261a9090fd2e7d5ad6102fe85a61f68
SHA1

e7f2f33ec45eed818df278beb80adbe4b61c7ade
SHA256

fdee5ba6c5ea4393157d18cabf482fd61ce31ec0ea327a6580f2d583f2c3cad8
SHA512

24f56d77244485fe9f00d9a987979c725fb56264a9a97cd37640ee51aca2202cb8361ec687eb951d8f48e523023c1287d2efaf246572341ae161817985337e9f
SSDEEP

768:DZqRDF4mkWQfcwGHAfaodnpAHK+f2vV+dBxhvL4YhR4zXOoXrlE:DZmpQEjHKtn0zOd+dphR4rnZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c261a9090fd2e7d5ad6102fe85a61f68_JaffaCakes118

Files

c261a9090fd2e7d5ad6102fe85a61f68_JaffaCakes118
.exe windows:1 windows x86 arch:x86

869c7895ea060fe008bd487fe5f515e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
ExitProcess
HeapFree
InterlockedDecrement
FreeLibrary
SetFilePointer
InterlockedIncrement
WideCharToMultiByte
VirtualAlloc
InitializeCriticalSection
WideCharToMultiByte
GetCurrentProcess
GetCommandLineA
FreeLibrary
SetEvent
GetStartupInfoW
GetACP
WideCharToMultiByte
LocalAlloc
CloseHandle
EnterCriticalSection
VirtualFree
LocalFree
SetLastError
DeleteCriticalSection
VirtualAlloc
FormatMessageW
GetProcessHeap
GetCurrentProcessId
QueryPerformanceCounter
CreateFileW
GetACP
LoadLibraryA
GetCurrentThreadId
GetLastError
LeaveCriticalSection
GetModuleHandleA
VirtualFree
GetLastError
GetCurrentProcess
VirtualAlloc
WriteFile
GetProcAddress
GetCurrentProcessId
GetCommandLineW
SetEvent
EnterCriticalSection
GetCurrentProcess
InterlockedDecrement
SetLastError
QueryPerformanceCounter
GetVersionExA
GetStartupInfoW
GetStartupInfoW
FormatMessageW
GetLastError
GetTickCount
InitializeCriticalSection
GetCurrentProcessId
EnterCriticalSection
CreateFileW
InterlockedDecrement
ExitProcess
Sleep
CloseHandle
InterlockedIncrement
LoadLibraryA
MultiByteToWideChar
InitializeCriticalSection
LeaveCriticalSection
FormatMessageW
Sleep
FreeLibrary
FormatMessageW
LoadLibraryA
GetModuleFileNameA
GetStartupInfoW
DeleteCriticalSection
VirtualAlloc
HeapDestroy
UnhandledExceptionFilter
WaitForSingleObject
FormatMessageW
MultiByteToWideChar
InitializeCriticalSection
QueryPerformanceCounter
WriteFile
GetCommandLineA
HeapDestroy
HeapAlloc
GetModuleHandleA
FormatMessageW
GetProcAddress
FormatMessageW
SetLastError
SetLastError
GetVersionExA
GetCommandLineW
CreateFileW
SetFilePointer
DeleteCriticalSection
HeapFree
GetTickCount
MultiByteToWideChar
lstrlenW
InterlockedDecrement
GetModuleHandleA
LocalFree
FormatMessageW
WideCharToMultiByte
FormatMessageW
GetStartupInfoA
LoadLibraryW
CloseHandle
GetSystemTimeAsFileTime
GetCurrentProcessId
LocalFree
CreateThread
InterlockedIncrement
HeapDestroy
GetCurrentProcess
CloseHandle
ReadFile
HeapAlloc
GetCurrentProcess

Sections

.data
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 512B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

869c7895ea060fe008bd487fe5f515e4

Headers

File Characteristics

Imports

kernel32

Sections

.data Size: 102KB - Virtual size: 120KB

.data Size: 2KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 8KB

.data Size: 512B - Virtual size: 4KB

.data Size: 2KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

Size: 512B - Virtual size: 512B

.data
Size: 102KB - Virtual size: 120KB

.data
Size: 2KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 8KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB