ce3fd821ed1cc8b67eeb66695934b0bd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ce3fd821ed1cc8b67eeb66695934b0bd_JaffaCakes118
Size

75KB
MD5

ce3fd821ed1cc8b67eeb66695934b0bd
SHA1

f1710231122b13b4c443f3dc44592b5bca56e3a1
SHA256

6d2f14ff92b7fac71af14659186794cdcb7e5062385897a93902c689c8eb307d
SHA512

64e8befc400bf9f3cc0812e88df87f3f7d36403659847f00f95bf54e38c0557081f0fd0762955b175a1ae0fa7cb00e9b1da8c74010ba391d6e7d18c160851849
SSDEEP

768:v9RqYljRTK7T1Uwx2vezwRYh9En2idyQJw8rkharEOnn739A29:1ljRT2ThxRKnvw8oK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce3fd821ed1cc8b67eeb66695934b0bd_JaffaCakes118

Files

ce3fd821ed1cc8b67eeb66695934b0bd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b18f6ccf9fecb1969b48b2e1142be15c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

SleepEx
TerminateProcess
LoadLibraryExA
ReadProcessMemory
CreateFileA
SleepEx
GetStartupInfoW
CreateProcessW
LoadLibraryExA
WaitForSingleObject
DeviceIoControl
GetSystemTimeAsFileTime
ReleaseMutex
WaitForSingleObjectEx
CreateFileA
GetStartupInfoW
VirtualProtectEx
GetStartupInfoW
WriteProcessMemory
TerminateProcess
CreateProcessA
VirtualProtectEx
GetSystemTime
CreateProcessA
LoadLibraryA
LoadLibraryExW
GetStartupInfoW
ReadFile
VirtualProtect
LoadLibraryExW
CreateProcessA
GetProcAddress
GetCurrentDirectoryA
GetLastError
LoadLibraryA
GetCommandLineA
GetHandleInformation
GetCommandLineA
GetModuleHandleA
GetCurrentProcess
GetCurrentDirectoryA
GetCurrentThread
GetCurrentThreadId
ReadProcessMemory
VirtualProtectEx
ReleaseMutex
ReleaseMutex
ReleaseMutex
GetStartupInfoA
GetStartupInfoW
Sleep
ReadProcessMemory
CreateProcessA
GetSystemTime
LoadLibraryExA
SleepEx
WriteProcessMemory
WaitForSingleObject
GetStartupInfoW
SleepEx
CreateProcessA
TerminateProcess
ReleaseMutex
TerminateProcess
ReleaseMutex
ReadFile
SleepEx
Sleep
Sleep
GetStartupInfoA
ReadProcessMemory
CreateFileA
GetSystemTime
GetStartupInfoA
WaitForSingleObject
VirtualProtectEx
GetSystemTimeAsFileTime
SleepEx
LoadLibraryExA
WaitForSingleObjectEx
LoadLibraryExW
DeviceIoControl
LoadLibraryA
LoadLibraryA
Sleep
CreateFileA
LoadLibraryA
CreateFileA
SleepEx
VirtualProtectEx
DeviceIoControl
GetStartupInfoW
GetStartupInfoW
WriteProcessMemory
LoadLibraryA
ReadProcessMemory
ReadFile
ReleaseMutex
GetSystemTime
GetSystemTimeAsFileTime
ReadProcessMemory
LoadLibraryA
Sleep
DeviceIoControl
ReadFile
WaitForSingleObjectEx
LoadLibraryExA
LoadLibraryExW
WaitForSingleObjectEx
GetStartupInfoA
TerminateProcess
GetStartupInfoA
GetStartupInfoW
Sleep
ReadFile
SleepEx
ReadFile
GetStartupInfoA
TerminateProcess
TerminateProcess
DeviceIoControl
ReleaseMutex
TerminateProcess
CreateProcessW
GetStartupInfoA
ReadFile
WriteProcessMemory
LoadLibraryA
LoadLibraryExA
CreateProcessW
WaitForSingleObjectEx
WaitForSingleObjectEx
TerminateProcess
SleepEx
GetSystemTimeAsFileTime
GetStartupInfoW
CreateProcessA
WaitForSingleObject
CreateProcessA
TerminateProcess
WriteProcessMemory
GetStartupInfoA
ReleaseMutex
ReadProcessMemory
GetSystemTime
LoadLibraryExW
ReadProcessMemory
VirtualProtect
DeviceIoControl
DeviceIoControl
TerminateProcess
WriteProcessMemory
GetStartupInfoW
DeviceIoControl
WaitForSingleObject
WaitForSingleObject
DeviceIoControl
GetSystemTime
ReadFile
ReleaseMutex
VirtualProtectEx
GetStartupInfoW
VirtualProtect
ReleaseMutex
CreateProcessA
WaitForSingleObject
ReleaseMutex
LoadLibraryExA
TerminateProcess
WaitForSingleObjectEx
WaitForSingleObjectEx
WaitForSingleObject
GetSystemTimeAsFileTime
ReadFile

Sections

.text
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b18f6ccf9fecb1969b48b2e1142be15c

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 8KB - Virtual size: 12KB

.rdata Size: 6KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 5KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 4KB

.data Size: 52KB - Virtual size: 52KB

.data Size: 512B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.text
Size: 8KB - Virtual size: 12KB

.rdata
Size: 6KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 5KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 52KB - Virtual size: 52KB

.data
Size: 512B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB