d9f311a144012e30be9424c021aabfd0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d9f311a144012e30be9424c021aabfd0_JaffaCakes118
Size

59KB
MD5

d9f311a144012e30be9424c021aabfd0
SHA1

70d6c99ca8b759723e0c1d7a1de27690aa1cef2a
SHA256

6e8a866f18471f612dd1f4e6086ffae0e61bd3ececb8c80eb9a0cb0acae59dd2
SHA512

ab2d57e9445ee44f1b1683ee08ccebb3d07f355fd2eb50172eea07e765f1a45986e235965158f28386f83a8c24d4ce18f56129400deddd86fcb552a4d56cb46e
SSDEEP

1536:AIOwji24CBaEUqZbk0CU/z7WUMcmaFzqO8hksnV:VOsi24CBaEJQYHlMcmJO4/V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d9f311a144012e30be9424c021aabfd0_JaffaCakes118

Files

d9f311a144012e30be9424c021aabfd0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

93c7f18f617fcb97e06cf4ce8b35dc74

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
ChangeDisplaySettingsA
GetKeyNameTextA
ShowWindow

kernel32

SetEnvironmentVariableA
GetNumberFormatA
GetEnvironmentVariableA
GetCurrentProcess
MoveFileExA
GetDiskFreeSpaceA
HeapFree
WaitForMultipleObjects
GlobalFlags
SetEvent
FlushFileBuffers
Sleep
SetFilePointer
DeviceIoControl
FormatMessageA
MoveFileA
CreateProcessA
FindNextFileA
SwitchToThread
GetCommandLineA
CreateThread
DeleteCriticalSection
SetErrorMode
GetVersionExA
CopyFileA
GetProcessHeap
IsValidLanguageGroup
ReleaseActCtx
GetSystemDirectoryA
SetFileTime
WriteFile
EnterCriticalSection
EnumSystemCodePagesW
FindClose
GetThreadTimes
SetUnhandledExceptionFilter
GetCurrentProcessId
GetFileAttributesA
GetDriveTypeA
GetSystemTime
OpenEventA
CreateFileA
SetFileAttributesA
GetProcAddress
DeleteFileA
GetProcessHeap
SetEvent
GetExitCodeProcess
GetShortPathNameW
GetTickCount
ReadFile
VirtualQuery
SetDllDirectoryA
GetCurrentThreadId
GetCurrentDirectoryA
GetSystemTimeAsFileTime
SetLastError
CloseHandle
CreateEventW
QueryPerformanceCounter
SystemTimeToFileTime
HeapAlloc
SetEndOfFile
FindFirstFileA
GetFileSize
GetModuleFileNameA
TerminateProcess
MoveFileA
DosDateTimeToFileTime
CopyFileExW
LocalFileTimeToFileTime
LeaveCriticalSection
GetPrivateProfileIntW
QueryDosDeviceA

ole32

CoInitialize
OleInitialize
CoUninitialize
CoCreateInstance

comdlg32

PrintDlgA
GetSaveFileNameW
GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jrdy
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 139KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93c7f18f617fcb97e06cf4ce8b35dc74

Headers

File Characteristics

Imports

user32

kernel32

ole32

comdlg32

Sections

.text Size: 9KB - Virtual size: 9KB

.data Size: 5KB - Virtual size: 117KB

.jrdy Size: 3KB - Virtual size: 3KB

.edata Size: 139KB - Virtual size: 267KB

.text
Size: 9KB - Virtual size: 9KB

.data
Size: 5KB - Virtual size: 117KB

.jrdy
Size: 3KB - Virtual size: 3KB

.edata
Size: 139KB - Virtual size: 267KB