c8c45379ec1d380c37e97b65102fbb81_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c8c45379ec1d380c37e97b65102fbb81_JaffaCakes118
Size

714KB
MD5

c8c45379ec1d380c37e97b65102fbb81
SHA1

01f1e79a216f199c4d25d6900dfb9dbf843da0ed
SHA256

1581c5ae8c7e81ffbf407882251c23a8cdf78b2c59b8dfd69cef37d04403a2ac
SHA512

49053be89b5caed56fa9264edcdbb38750e59f6507f167d482b96e877ff65cbcde65f5be7fb23210cc86f27ffc5879c6f74e448f4549587b007ffb4e1f7e96b8
SSDEEP

12288:QQeK6fCwT7f8iDrt2/1UtDzAho72fChXqO+j6LzI4jGxa7c9qO/vZ1V2U29e:QQeK6F0ErltDEu26dq404ua7+PVjue

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8c45379ec1d380c37e97b65102fbb81_JaffaCakes118

Files

c8c45379ec1d380c37e97b65102fbb81_JaffaCakes118
.exe windows:4 windows x86 arch:x86

493160c98559569a0e27a7ee934ecc30

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndPaint
GetDC
GetClientRect
GetParent
ShowWindow
SetTimer
FillRect
DispatchMessageA
GetWindowRect
SetWindowLongA
SetWindowTextA
ScreenToClient
TrackPopupMenu
SetForegroundWindow
IsWindowVisible
InvalidateRect
CallWindowProcA

oleaut32

VariantInit
SysAllocStringLen
VariantClear

kernel32

LeaveCriticalSection
GetConsoleOutputCP
WaitForSingleObject
GetFileAttributesW
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
LocalAlloc
CreateFileA
GetCPInfo
InterlockedExchange
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetOEMCP
LocalFree
InitializeCriticalSection
FindClose
InterlockedDecrement
FormatMessageA
HeapAlloc
GetTickCount
GetCurrentProcessId
GetVersion
GetModuleHandleA
GetCurrentThread
GetCommandLineA
GetLastError
ExitProcess
VirtualAlloc
CreateProcessW
UnmapViewOfFile
SizeofResource
GetCurrentThreadId
GetACP
ReadFile
SetFilePointer
TlsFree
InterlockedCompareExchange
WideCharToMultiByte
GetEnvironmentStrings
lstrlenW
GetEnvironmentStringsW
LCMapStringA
GlobalFree
lstrlenA
GetSystemInfo
TlsSetValue
GetFileType
CreateEventA
CreateFileW
FindNextFileA
FindFirstFileA
CompareStringW
GetProcessHeap
GetProcAddress
GetWindowsDirectoryA
DeleteFileA
GetFileSize
LoadLibraryA
GetVersionExA
QueryPerformanceCounter
SetEvent
LoadLibraryW
SetHandleCount
HeapFree
InterlockedIncrement
TerminateProcess
GetSystemDirectoryA
SetUnhandledExceptionFilter
MultiByteToWideChar
UnhandledExceptionFilter
lstrcmpiW

Sections

.text
Size: 677KB - Virtual size: 1003KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

493160c98559569a0e27a7ee934ecc30

Headers

File Characteristics

Imports

user32

oleaut32

kernel32

Sections

.text Size: 677KB - Virtual size: 1003KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 11KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 677KB - Virtual size: 1003KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 11KB

.rsrc
Size: 18KB - Virtual size: 18KB