f5f8218aa4a9d8371c4a45e4e54ed55d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f5f8218aa4a9d8371c4a45e4e54ed55d_JaffaCakes118
Size

261KB
MD5

f5f8218aa4a9d8371c4a45e4e54ed55d
SHA1

debeaf05b2b3f118e3116afa4800b11c3209d709
SHA256

d7ca1fc92f64228a62f3d789e2690d5e5c4f1eae693f9f223961fd1528f70d4d
SHA512

f450a442a39d3b1528412cc484366e788332642b152242c2563a5cea732e2ece6f1cb128d726d23bf176c20806b8e249764ce65ee0c2934cd85ac63a641668b9
SSDEEP

6144:ysMdjPSZWpwE1bYvuaBDLUfNuuunrwGo8r2guQnjR:yDPSZrEtPU4Nmn08r2QnjR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5f8218aa4a9d8371c4a45e4e54ed55d_JaffaCakes118

Files

f5f8218aa4a9d8371c4a45e4e54ed55d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0e1c4792f15b09efa9287ef89fc4944a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
SystemTimeToFileTime
GetSystemTime
GetLastError
GetLocaleInfoW
GetVersion
InitializeCriticalSection
ExitProcess
GetCurrentProcess
GetCurrentThreadId
TlsAlloc
GetCurrentThread
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapCreate
IsBadWritePtr
FatalAppExitA
GetStartupInfoA
GetEnvironmentStringsW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
Sleep
GetStringTypeA
GetStringTypeW
IsValidLocale
IsValidCodePage
GetLocaleInfoA
GetUserDefaultLCID
BeginUpdateResourceW
GetProcAddress

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

shell32

SHCreateDirectoryExA
SHGetFolderPathA

msasn1

ASN1BEREncCheck
ASN1CEREncMultibyteString
ASN1BERDecBitString2
ASN1BEREncGeneralizedTime
ASN1DecRealloc
ASN1BERDecUTCTime
ASN1BEREncFlush
ASN1BEREncEndOfContents
ASN1BERDecDouble
ASN1BEREncChar32String
ASN1BERDecOctetString
ASN1BEREncOpenType
ASN1_CloseModule
ASN1ztchar32string_free
ASN1open_free
ASN1_Encode
ASN1_CloseDecoder

t2embed

TTIsEmbeddingEnabledForFacename

Sections

CODE
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sQvasT
Size: 5KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ZY
Size: 2KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sHJUwl
Size: 4KB - Virtual size: 971KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 90KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.WoXhXU
Size: 512B - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.LqTVGi
Size: 1KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 129KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.FOAu
Size: 4KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0e1c4792f15b09efa9287ef89fc4944a

Headers

File Characteristics

Imports

kernel32

advapi32

shell32

msasn1

t2embed

Sections

CODE Size: 2KB - Virtual size: 2KB

.sQvasT Size: 5KB - Virtual size: 48KB

.text Size: 11KB - Virtual size: 10KB

.ZY Size: 2KB - Virtual size: 313KB

.rdata Size: 2KB - Virtual size: 46KB

.sHJUwl Size: 4KB - Virtual size: 971KB

.edata Size: 90KB - Virtual size: 130KB

.WoXhXU Size: 512B - Virtual size: 94KB

.data Size: 6KB - Virtual size: 268KB

.LqTVGi Size: 1KB - Virtual size: 188KB

.edata Size: 129KB - Virtual size: 156KB

.FOAu Size: 4KB - Virtual size: 268KB

.rsrc Size: 1KB - Virtual size: 1KB

CODE
Size: 2KB - Virtual size: 2KB

.sQvasT
Size: 5KB - Virtual size: 48KB

.text
Size: 11KB - Virtual size: 10KB

.ZY
Size: 2KB - Virtual size: 313KB

.rdata
Size: 2KB - Virtual size: 46KB

.sHJUwl
Size: 4KB - Virtual size: 971KB

.edata
Size: 90KB - Virtual size: 130KB

.WoXhXU
Size: 512B - Virtual size: 94KB

.data
Size: 6KB - Virtual size: 268KB

.LqTVGi
Size: 1KB - Virtual size: 188KB

.edata
Size: 129KB - Virtual size: 156KB

.FOAu
Size: 4KB - Virtual size: 268KB

.rsrc
Size: 1KB - Virtual size: 1KB