fc06c9f215b9e45c4d3d60dbe010bded_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fc06c9f215b9e45c4d3d60dbe010bded_JaffaCakes118
Size

168KB
MD5

fc06c9f215b9e45c4d3d60dbe010bded
SHA1

869523c372e58d77c26ef88c458888c490ad8e22
SHA256

477c409cd5ab5d41c000f78df91c7a07cf2060c5cf94c464dd31df6079a5c57e
SHA512

9150e13402c0e35a2b10c97dfeae3fbab6d4158fb30fd9fac635b74c29de6106e0adba77b5e511373101787c4ad58b2dfe258f39eecddbe1a86b15f35effa00d
SSDEEP

3072:kK0D4HQm0tyJ4nwJWKJdj0v65RyjcGK3pr3ZVEBW:v0DuekWOdj0vqIAGIrJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc06c9f215b9e45c4d3d60dbe010bded_JaffaCakes118

Files

fc06c9f215b9e45c4d3d60dbe010bded_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7257cd7d6301391b21e20c4ed3c68572

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoUninitialize
CoInitialize
StringFromGUID2
CoCreateGuid
CoCreateInstance
CoSetProxyBlanket

rpcrt4

UuidCreate

kernel32

GetConsoleOutputCP
SetLastError
HeapSize
InterlockedIncrement
GetStdHandle
InterlockedDecrement
GetLocaleInfoW
GetCurrentDirectoryW
EnterCriticalSection
GetThreadPriority
WriteFile
RaiseException
VirtualAlloc
HeapCreate
IsValidCodePage
GetConsoleCP
MultiByteToWideChar
GetStringTypeA
LoadLibraryA
TlsFree
GetProcAddress
GetModuleHandleA
HeapAlloc
IsDebuggerPresent
VirtualFree
SetCommTimeouts
GetEnvironmentStringsW
GetCPInfo
WideCharToMultiByte
GetModuleFileNameA
TerminateProcess
EnumSystemLocalesA
WriteConsoleA
GetSystemTimeAsFileTime
TlsAlloc
ReadFile
LCMapStringA
TlsSetValue
RtlUnwind
HeapFree
GetProcessHeap
GetStringTypeW
EnumResourceNamesA
HeapReAlloc
LeaveCriticalSection
GetCommandLineA
GlobalAlloc
SetFilePointer
TlsGetValue
GetVersionExA
GetConsoleMode
GetStartupInfoA
WriteConsoleW
FlushFileBuffers
IsValidLocale
GetLastError
ExitProcess
GetACP
GetCurrentProcessId
QueryPerformanceCounter
SetHandleCount
SetStdHandle
LCMapStringW
GetModuleFileNameW
GetUserDefaultLCID
GetOEMCP
HeapDestroy
SetEndOfFile
GetFullPathNameW
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetTickCount
GetCurrentProcess
GetCurrentThreadId
FreeEnvironmentStringsA
CloseHandle
DeleteCriticalSection
GetLocaleInfoA
CreateFileA
ExitProcess
GetFileType
SetUnhandledExceptionFilter
GetEnvironmentStrings
Sleep
InitializeCriticalSection
GetFullPathNameA

advapi32

RegCloseKey
RegCreateKeyExW
RegSetValueExW

shlwapi

SHDeleteKeyW

user32

GetClassLongA
MessageBoxW

shell32

SHFileOperationW
SHCreateDirectoryExW
SHGetFolderPathW

Sections

.text
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 512B - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7257cd7d6301391b21e20c4ed3c68572

Headers

File Characteristics

Imports

ole32

rpcrt4

kernel32

advapi32

shlwapi

user32

shell32

Sections

.text Size: 139KB - Virtual size: 139KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 24KB - Virtual size: 24KB

.crt Size: 512B - Virtual size: 72KB

.text
Size: 139KB - Virtual size: 139KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 24KB - Virtual size: 24KB

.crt
Size: 512B - Virtual size: 72KB