e2211c8bc84ba7e53748da597a78bc5e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

e2211c8bc84ba7e53748da597a78bc5e_JaffaCakes118
Size

3.0MB
MD5

e2211c8bc84ba7e53748da597a78bc5e
SHA1

88e591082ad8d8f153e662b4bccbc2cb55def96c
SHA256

5b578e0648011358cd49e634600c44abf4943511427620728d7e2707806d9a91
SHA512

58d3b5643ddd3bef5db7fe2076c7a667537e0c94d9ea964d646fdcfd9f7242bd096900499ef24377d309fdfba06e988ff4cddf148d484685ed0c59c0237a74ef
SSDEEP

49152:UV+y727WgVy4kSwqEbPGn4J1OeMVwKFSOQ:UV+ZtyPbPGn6Mtp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e2211c8bc84ba7e53748da597a78bc5e_JaffaCakes118

Files

e2211c8bc84ba7e53748da597a78bc5e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e8fa6adeb0a2dd7f185888f8a04d2e3a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
GetACP
DeleteFileA
ExitProcess
GetVersion
FindFirstFileA
lstrcmpiA
GetTempPathA
FormatMessageW
GetFileAttributesA
GetBinaryTypeW
GetDateFormatA
RaiseException
InterlockedExchange
SetFileAttributesA
ResetEvent
TerminateThread
SetEndOfFile
SearchPathA
GetConsoleCP
GetTimeFormatA
DuplicateHandle
UnlockFile
GetExitCodeProcess
GetVolumeInformationW
GetShortPathNameA
GetQueuedCompletionStatus
GlobalFlags
OpenProcess
FindNextFileA
CopyFileA
GetLastError
DeleteFileW
GetModuleHandleW
GetProcAddress
GetModuleHandleA
IsBadReadPtr
SetLastError
GetCurrentThreadId
GetCommandLineW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
SetFilePointer
GetOEMCP
GetCPInfo
FlushFileBuffers
SetStdHandle
HeapReAlloc
VirtualAlloc
HeapAlloc
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetFileType
GetStdHandle
LCMapStringW
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
HeapFree
GetCommandLineA
GetStartupInfoA
GetTickCount
FreeLibrary
LoadLibraryA
CloseHandle

user32

GetClientRect
LoadStringW
ReleaseDC
wsprintfA
EndPaint
TrackPopupMenu
AppendMenuW
CharNextW
EnableMenuItem
BeginPaint
GetWindowThreadProcessId
EndDialog
CheckMenuRadioItem
SetClassLongW
DispatchMessageW
SetWindowLongW
IsWindowVisible
LoadAcceleratorsW
TranslateAcceleratorW
MoveWindow
GetParent
InvalidateRect
GetMessagePos
SetFocus
RegisterClassExW
TrackPopupMenuEx
EmptyClipboard
SetCursor
IsWindowEnabled
TranslateMessage
DefWindowProcA
CheckDlgButton
LoadBitmapA
GetSubMenu
GetClassNameW
GetClassInfoExW
SendMessageTimeoutA
SendMessageW
GetSystemMetrics
GetWindowLongA

gdi32

DeleteMetaFile

advapi32

RegCreateKeyExW

ws2_32

WSAAddressToStringA
WSAConnect
WSASend

Sections

e3551
Size: 860KB - Virtual size: 859KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

e3552
Size: 408KB - Virtual size: 407KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�e3553
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e8fa6adeb0a2dd7f185888f8a04d2e3a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ws2_32

Sections

e3551 Size: 860KB - Virtual size: 859KB

e3552 Size: 408KB - Virtual size: 407KB

�e3553 Size: 1.7MB - Virtual size: 1.7MB

e3551
Size: 860KB - Virtual size: 859KB

e3552
Size: 408KB - Virtual size: 407KB

�e3553
Size: 1.7MB - Virtual size: 1.7MB