c858cb6f299fc6db88abb3aa78752e5a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c858cb6f299fc6db88abb3aa78752e5a_JaffaCakes118
Size

435KB
MD5

c858cb6f299fc6db88abb3aa78752e5a
SHA1

5843a4416d021452293a2f6691652225d026e4d1
SHA256

c20b2a76dffee42efa592158f52be2b7234cb0f6c9619654c3c32636d739e6ca
SHA512

7fdac458a79a3ccbdeda571d11116e74b8a6c57379ebce5b76fac8fa34c6dfc404dc9c7569dd50e95d8be16f7a568f030168d025062ec3c547f73fa16c560c1c
SSDEEP

12288:3iReGrvYU/0ZMSR35DC6C7R+ew75tVwMWSG:3iReMv1/0u035DC6qRA+/t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c858cb6f299fc6db88abb3aa78752e5a_JaffaCakes118

Files

c858cb6f299fc6db88abb3aa78752e5a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cd8eb09fe63cdb35c8d444293550d30f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocaleInfoW
InitializeCriticalSection
RtlUnwind
QueryPerformanceCounter
OpenMutexA
SetFilePointer
GetCommandLineA
SleepEx
EnumSystemLocalesW
LockResource
EnumSystemLocalesA
LCMapStringA
GetEnvironmentVariableA
SetStdHandle
GetLastError
GetProcessHeap
HeapDestroy
CompareStringW
GetLocaleInfoA
HeapFree
GetStringTypeW
SetConsoleTitleW
GetVersionExA
VirtualAlloc
GetDateFormatA
IsValidCodePage
WideCharToMultiByte
LocalReAlloc
SetHandleCount
GetSystemDefaultLCID
GetOEMCP
SetConsoleTextAttribute
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CloseHandle
CompareStringA
FreeEnvironmentStringsW
WriteConsoleW
IsDebuggerPresent
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
LocalCompact
MultiByteToWideChar
CreateFileA
ReadConsoleOutputCharacterA
GetCurrentThreadId
GetProcAddress
GetACP
LCMapStringW
InterlockedIncrement
VirtualFree
GetConsoleCP
GetModuleHandleA
HeapValidate
UnhandledExceptionFilter
EnterCriticalSection
HeapReAlloc
GetTimeFormatA
GetComputerNameW
GetCurrentProcess
GetConsoleMode
GetUserDefaultLangID
CreateMutexA
TlsSetValue
SetConsoleCtrlHandler
DeleteCriticalSection
WriteFile
LoadLibraryA
TlsGetValue
GetStringTypeExA
TlsAlloc
GetCPInfo
GetCurrentThread
Sleep
GetStringTypeA
IsValidLocale
GetUserDefaultLCID
HeapCreate
GetEnvironmentStrings
GetFileType
GetExitCodeProcess
WriteConsoleA
GetConsoleOutputCP
InterlockedDecrement
FlushFileBuffers
GetTickCount
HeapSize
GetTimeZoneInformation
ExitProcess
GetModuleFileNameA
HeapAlloc
OpenFile
GetStdHandle
GetCompressedFileSizeW
FreeLibrary
GetStartupInfoA
TlsFree
SetLastError
ReadFile
WriteProfileSectionA
LeaveCriticalSection
TerminateProcess
GetCurrentProcessId
VirtualQuery
InterlockedExchange
GetEnvironmentStringsW

comdlg32

LoadAlterBitmap
GetOpenFileNameW

user32

RegisterClassExA
LoadMenuA
ChangeMenuW
SetMenu
CopyRect
SetMessageQueue
SetClassLongA
RegisterClassA
SetPropW
CreateWindowExA
GetDlgItemTextW
MsgWaitForMultipleObjects
DdeQueryConvInfo
PeekMessageW
GetTabbedTextExtentA
GetDlgItem
DdeAbandonTransaction
GetKeyboardLayoutList
CallWindowProcW
MapVirtualKeyW

comctl32

InitCommonControlsEx

gdi32

RectVisible
SelectClipPath
PatBlt
CreateEllipticRgnIndirect
PolyPolygon
SetMiterLimit
GetTextExtentPoint32A
CombineRgn
GetClipBox
StretchDIBits
GetCharacterPlacementW
LineDDA
GetTextAlign

Sections

.text
Size: 240KB - Virtual size: 239KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 178KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd8eb09fe63cdb35c8d444293550d30f

Headers

File Characteristics

Imports

kernel32

comdlg32

user32

comctl32

gdi32

Sections

.text Size: 240KB - Virtual size: 239KB

.rdata Size: 10KB - Virtual size: 19KB

.data Size: 178KB - Virtual size: 177KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 240KB - Virtual size: 239KB

.rdata
Size: 10KB - Virtual size: 19KB

.data
Size: 178KB - Virtual size: 177KB

.rsrc
Size: 6KB - Virtual size: 5KB