d69c90a1483ae4ce736519d07c7414b1_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d69c90a1483ae4ce736519d07c7414b1_JaffaCakes118
Size

128KB
MD5

d69c90a1483ae4ce736519d07c7414b1
SHA1

a7750dce6b510b13b9d86c0559ecbafa0ec52c10
SHA256

dd60278cf60894d726752ce32916db9725cd437ca5dfcfe413aa818de06c722b
SHA512

f4c17e381f6122137bded7211874a3ec0e504d42262c828b3e7e647f93098f6a4bf7f89b65916b2ccad63b5be0a9eeeaa44d4125d7a72a3822a0711c64d70958
SSDEEP

1536:+wQ8UNw5bffZls+FE6Qib7OkEuas4ar1H:+whU2h3s+FEpifDb14o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d69c90a1483ae4ce736519d07c7414b1_JaffaCakes118

Files

d69c90a1483ae4ce736519d07c7414b1_JaffaCakes118
.exe windows:1 windows x86 arch:x86

7584b1146725590fe4d8f6f59162f025

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
LocalFree
GetCommandLineA
LoadLibraryW
GetCurrentThreadId
TerminateProcess
lstrcmpiW
GetStartupInfoA
MultiByteToWideChar
LocalFree
GetStartupInfoA
CreateThread
CreateFileW
GetLastError
HeapReAlloc
GetProcessHeap
HeapAlloc
InterlockedDecrement
WaitForSingleObject
GetCurrentThreadId
LoadLibraryW
WaitForSingleObject
UnhandledExceptionFilter
ExitProcess
GetModuleFileNameA
GetModuleFileNameA
InterlockedDecrement
lstrcmpiW
GetCommandLineA
WaitForSingleObject
FreeLibrary
FormatMessageW
SetLastError
InitializeCriticalSection
GetVersionExA
VirtualFree
InterlockedIncrement
GetSystemTimeAsFileTime
GetCommandLineW
GetSystemTimeAsFileTime
CloseHandle
GetCommandLineW
HeapAlloc
ReadFile
GetModuleHandleA
UnhandledExceptionFilter
WriteFile
UnhandledExceptionFilter
VirtualAlloc
InterlockedIncrement
LoadLibraryA
LoadLibraryA
WriteFile
ExitProcess
GetStartupInfoA
LocalFree
LoadLibraryW
GetLastError
EnterCriticalSection
GetCommandLineA
InterlockedIncrement
WaitForSingleObject
GetStartupInfoW
GetVersionExA
GetCurrentProcess
VirtualAlloc
LeaveCriticalSection
HeapFree
GetCurrentProcess
FreeLibrary
GetModuleFileNameA
GetVersionExA
InitializeCriticalSection
SetFilePointer
GetCommandLineA
FormatMessageW
LeaveCriticalSection
HeapDestroy
InterlockedDecrement
GetACP
GetACP
LoadLibraryW
GetStartupInfoW
LocalFree
ExitProcess
WriteFile
QueryPerformanceCounter
ReadFile
GetCurrentThreadId
UnhandledExceptionFilter
LeaveCriticalSection
GetModuleHandleW
HeapFree
GetCommandLineA
GetACP
LoadLibraryA
WaitForSingleObject
WaitForSingleObject
GetTickCount
FormatMessageW
InitializeCriticalSection
GetCurrentThreadId
ExitProcess
HeapFree
InterlockedDecrement
QueryPerformanceCounter
FormatMessageW
GetModuleHandleW
lstrcmpiW
lstrlenW
WaitForSingleObject
CloseHandle
MultiByteToWideChar
LoadLibraryA
Sleep
HeapReAlloc
FreeLibrary
VirtualAlloc
SetFilePointer
FreeLibrary
MultiByteToWideChar
FormatMessageW
LocalFree
QueryPerformanceCounter
LoadLibraryW
GetTickCount
GetCurrentThreadId
WideCharToMultiByte
FormatMessageW
GetCurrentProcess
TerminateProcess
GetVersionExA
GetCommandLineW
CreateFileW
LocalAlloc

Sections

.xgoq
Size: 113KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.dlhq
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.npwx
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.feag
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cxdr
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.slic
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kccv
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wofw
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.xfdn
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pffy
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cqhe
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yvav
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7584b1146725590fe4d8f6f59162f025

Headers

File Characteristics

Imports

kernel32

Sections

.xgoq Size: 113KB - Virtual size: 120KB

.dlhq Size: 1024B - Virtual size: 4KB

.npwx Size: 1KB - Virtual size: 4KB

.feag Size: 4KB - Virtual size: 4KB

.cxdr Size: 512B - Virtual size: 4KB

.slic Size: 512B - Virtual size: 4KB

.kccv Size: 512B - Virtual size: 4KB

.wofw Size: 3KB - Virtual size: 3KB

.xfdn Size: 512B - Virtual size: 12B

.pffy Size: 512B - Virtual size: 4KB

.cqhe Size: 1024B - Virtual size: 4KB

.yvav Size: 512B - Virtual size: 4KB

.xgoq
Size: 113KB - Virtual size: 120KB

.dlhq
Size: 1024B - Virtual size: 4KB

.npwx
Size: 1KB - Virtual size: 4KB

.feag
Size: 4KB - Virtual size: 4KB

.cxdr
Size: 512B - Virtual size: 4KB

.slic
Size: 512B - Virtual size: 4KB

.kccv
Size: 512B - Virtual size: 4KB

.wofw
Size: 3KB - Virtual size: 3KB

.xfdn
Size: 512B - Virtual size: 12B

.pffy
Size: 512B - Virtual size: 4KB

.cqhe
Size: 1024B - Virtual size: 4KB

.yvav
Size: 512B - Virtual size: 4KB