eacb3bcb5af214ef7a50cd266b286f88_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

eacb3bcb5af214ef7a50cd266b286f88_JaffaCakes118
Size

214KB
MD5

eacb3bcb5af214ef7a50cd266b286f88
SHA1

2f6be632237859b83c9d0f52d633d9a0140d97ab
SHA256

f50e5214e7b0cb308eed0d1bdbf370fca14f745e6eecacdc7131a8e7bc2a726d
SHA512

a1001cb0ac5bcb66033ad091e981bdf66fac229fc95bb13c4ae95c385e8b8c0a37c4b4194daa51c609c47ff1ec14e753566e595a47f91ce6a1100cdd11322b48
SSDEEP

3072:NjUi5Tp954pLHMNV5UGvbJIWCXlfNabSJkQlalrH96d4B4mTSMdrng04BExLmRip:D545MNV5tuRk64B4mTPrFLmRi3Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eacb3bcb5af214ef7a50cd266b286f88_JaffaCakes118

Files

eacb3bcb5af214ef7a50cd266b286f88_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1c47125b9d68243dfc7ea80e615c7e09

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

FindResourceA
GetTempFileNameA
GetTempPathA
GetModuleFileNameA
GetModuleHandleA
WideCharToMultiByte
MultiByteToWideChar
GetUserDefaultLangID
MulDiv
GetDiskFreeSpaceExA
GetVolumeInformationA
GetDriveTypeA
GetLogicalDriveStringsA
CopyFileA
GetLastError
SetFileAttributesA
ReleaseMutex
WaitForSingleObject
CreateMutexA
LCMapStringW
LCMapStringA
SetEndOfFile
GetSystemInfo
LoadResource
GetOEMCP
GetACP
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
GetCPInfo
InitializeCriticalSection
VirtualQuery
InterlockedExchange
FlushFileBuffers
SetStdHandle
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
LockResource
CreateFileA
WriteFile
CloseHandle
FreeResource
LoadLibraryA
GetProcAddress
FreeLibrary
DeleteFileA
VirtualProtect
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapFree
HeapAlloc
ExitProcess
EnterCriticalSection
LeaveCriticalSection
ReadFile
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
DeleteCriticalSection
TlsAlloc
SetLastError
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
RtlUnwind
HeapReAlloc
TerminateProcess
GetCurrentProcess
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW

user32

RegisterWindowMessageA
CharToOemA
GetMessageA
LoadIconA
LoadCursorA
GetSysColor
RegisterClassA
DialogBoxParamA
CreateDialogParamA
InvalidateRect
GetClientRect
SetWindowTextA
SetFocus
DefWindowProcA
PostQuitMessage
CreateWindowExA
ShowWindow
UpdateWindow
SetWindowLongA
EndDialog
OemToCharA
GetParent
GetDesktopWindow
GetWindowRect
MoveWindow
DestroyWindow
DispatchMessageA
PeekMessageA
TranslateMessage
GetDlgItem
SendMessageA
MessageBoxA
GetDC
ReleaseDC

gdi32

DeleteObject
GetStockObject
SelectObject
Rectangle
SetBkMode
GetDeviceCaps
CreateFontA
CreateSolidBrush

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 900KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 216KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c47125b9d68243dfc7ea80e615c7e09

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

advapi32

Sections

.text Size: 76KB - Virtual size: 72KB

.rdata Size: 44KB - Virtual size: 43KB

.data Size: 8KB - Virtual size: 900KB

.rsrc Size: 216KB - Virtual size: 212KB

.text
Size: 76KB - Virtual size: 72KB

.rdata
Size: 44KB - Virtual size: 43KB

.data
Size: 8KB - Virtual size: 900KB

.rsrc
Size: 216KB - Virtual size: 212KB