c7c23fd48f267cfb811360a72070dda2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c7c23fd48f267cfb811360a72070dda2_JaffaCakes118
Size

327KB
MD5

c7c23fd48f267cfb811360a72070dda2
SHA1

86bed991ece3776057adb52efed66d1b5a118e19
SHA256

74cca4ea9b7ab9f1d5d9088438588e04e47927965288913eae3365f9142d41e6
SHA512

6eeba85b13b37c6596fb148da63c0ce76cb1d132cdd54aae37a0c431d6a2f9faf46c9319428da19f876566833b7d689e37fa76ca673c06a5172c27da64b040b8
SSDEEP

6144:Jag0e8EboDfoYslnyIK+VBd7yqTbqaQ1tx+ph8iYylaTY2D2VLuRChZLeT:kS8Eb+NI5BXqaYiYygTapeT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c7c23fd48f267cfb811360a72070dda2_JaffaCakes118

Files

c7c23fd48f267cfb811360a72070dda2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ebe6c83b651e512c257cee347bcde46f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

LocalFree
HeapReAlloc
CompareStringW
EnumSystemCodePagesW
CreateMutexA
ReleaseMutex
GetModuleHandleA
GetCommandLineW
TlsGetValue
VirtualQuery
TlsFree
GetCommandLineA
LCMapStringW
InterlockedIncrement
RtlUnwind
ExitProcess
GetProcAddress
CloseHandle
GetCurrentThreadId
TransmitCommChar
WriteFile
LoadLibraryA
GetCurrentProcess
HeapCreate
GetStringTypeW
GetLastError
UnmapViewOfFile
ReadConsoleOutputW
InterlockedDecrement
TerminateProcess
CompareStringA
GetTimeZoneInformation
GetSystemDirectoryA
GlobalFindAtomW
GetLongPathNameW
HeapAlloc
QueryPerformanceCounter
SetHandleCount
GetNumberFormatA
InterlockedExchange
GetEnvironmentStrings
DeleteCriticalSection
GetCurrentThread
ReadConsoleInputA
UnhandledExceptionFilter
RemoveDirectoryW
SetStdHandle
GetStartupInfoA
SetVolumeLabelA
SetLocalTime
FreeEnvironmentStringsW
GetTickCount
GetFileType
GetStringTypeA
GetMailslotInfo
TlsAlloc
HeapFree
InitializeCriticalSection
SetEnvironmentVariableA
WriteProfileStringW
GetVersion
EnumSystemLocalesW
FindResourceExW
TlsSetValue
WideCharToMultiByte
GetLocalTime
LCMapStringA
GetEnvironmentStringsW
OpenMutexA
SetLastError
GetSystemDefaultLCID
EnterCriticalSection
IsBadWritePtr
VirtualFree
GetCurrentProcessId
GetStartupInfoW
ReadFile
FlushFileBuffers
HeapDestroy
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
MultiByteToWideChar
FindNextChangeNotification
VirtualAlloc
GetCPInfo
GetModuleFileNameA
GetPrivateProfileStructA
GetModuleFileNameW
GetStdHandle
GetSystemTime
DuplicateHandle
LocalCompact
LeaveCriticalSection
SetFilePointer

user32

RegisterClipboardFormatA
GetUserObjectInformationA
SetSysColors
RegisterClassA
RegisterClipboardFormatW
BroadcastSystemMessageA
InvalidateRgn
SetWindowsHookExW
RegisterClassExA

Sections

.text
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ebe6c83b651e512c257cee347bcde46f

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 141KB - Virtual size: 140KB

.rdata Size: 4KB - Virtual size: 12KB

.data Size: 173KB - Virtual size: 172KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 141KB - Virtual size: 140KB

.rdata
Size: 4KB - Virtual size: 12KB

.data
Size: 173KB - Virtual size: 172KB

.rsrc
Size: 8KB - Virtual size: 7KB