d9eac7d04b5b55258721e449b8ec0370_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d9eac7d04b5b55258721e449b8ec0370_JaffaCakes118
Size

285KB
MD5

d9eac7d04b5b55258721e449b8ec0370
SHA1

79ece9d7be0a2ba48a05d3789038732d9a5b6f30
SHA256

6cb94d2fd9d34cbd23840228d7197fa92489cf652e6a9db01b949cafa25f246e
SHA512

5208e79047bcd464f50affb4fa183a42d5ff7e150ecc4e8bc0a83bf1a7a61b73c16b54a8c638c6262ad40aee5371e6d8a3f281f76a84793b384f16c7e1f710aa
SSDEEP

6144:5lQ1mBo+oYjDCWOOeJsPRs5EVHFfWQ8YHr9PE9WlP7yOD/:U1mBiNOEefWQ8Uay2Oz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d9eac7d04b5b55258721e449b8ec0370_JaffaCakes118

Files

d9eac7d04b5b55258721e449b8ec0370_JaffaCakes118
.exe windows:4 windows x86 arch:x86

100b085e40a0d46fc58ffe38d300620e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

pdh

PdhCloseQuery

user32

GetMessageA
CreateMenu
GetSystemMenu
GetClipboardOwner
FindWindowA
MessageBoxIndirectA
WinHelpA
InvalidateRect
SetWindowPos
EndPaint
GetClientRect
SetWindowTextA
MsgWaitForMultipleObjects
IsWindow
CreateCaret
ShowCaret
HideCaret
DestroyCaret
EnableMenuItem
LoadIconA
RegisterClassA

kernel32

ExitProcess
FileTimeToLocalFileTime
FileTimeToSystemTime
FillConsoleOutputCharacterW
FindClose
FindFirstFileA
FindFirstFileW
FindNextFileA
FindNextFileW
FindResourceW
FlushFileBuffers
FormatMessageA
FormatMessageW
FreeConsole
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetComputerNameW
GetConsoleScreenBufferInfo
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetDiskFreeSpaceA
GetDiskFreeSpaceExW
GetDiskFreeSpaceW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetExitCodeProcess
GetExitCodeThread
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileInformationByHandle
GetFileSize
GetFileTime
GetFileType
GetFullPathNameW
GetLastError
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
HeapAlloc
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedExchangeAdd
InterlockedIncrement
IsDBCSLeadByteEx
IsValidCodePage
IsValidLocale
LeaveCriticalSection
LoadResource

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 277KB - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 492B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

100b085e40a0d46fc58ffe38d300620e

Headers

File Characteristics

Imports

pdh

user32

kernel32

Sections

.text Size: 4KB - Virtual size: 3KB

.data Size: 277KB - Virtual size: 277KB

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 512B - Virtual size: 492B

.text
Size: 4KB - Virtual size: 3KB

.data
Size: 277KB - Virtual size: 277KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 512B - Virtual size: 492B