00bb3d3f960d1fde5a28acc2abda0618_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

00bb3d3f960d1fde5a28acc2abda0618_JaffaCakes118
Size

150KB
MD5

00bb3d3f960d1fde5a28acc2abda0618
SHA1

c17e3ba6c15dd0a8837ee5c793a403306d9a71b9
SHA256

ea3314797d465c8b392a8c8263d0ecd1595e58eba51859a15601cafb30a21c1a
SHA512

9cac2e9ce9ee432a86427a755dc8cf287062bca50901ac019b6d2e7cbcf658bd2c294d87781a1052dc1386603f367f9965e6a7af5265630bc2760172ed8f2fbf
SSDEEP

3072:v8LHYpY3L/akSXDjsimb+GyFrTkl0zxKu3OxGY:vAHYpY7ksi/FrfdZ3Og

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00bb3d3f960d1fde5a28acc2abda0618_JaffaCakes118

Files

00bb3d3f960d1fde5a28acc2abda0618_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f1f257fcd7fa8e90e2f2c7ca7a4a56e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
CreateProcessA
GetConsoleMode
GetFileTime
GetCurrentThread
Sleep
CreateThread
CopyFileW
DeleteFileA
GetCurrentProcessId
GetComputerNameA
OpenFile
GetLastError
CopyFileW
GetComputerNameA
GetOEMCP
GetStdHandle
ExitProcess
DeleteAtom
GetCPInfo
GetCurrentThreadId
CreateDirectoryA
ExitThread
DeleteFileA
Sleep
GetConsoleOutputCP
ExitProcess
CopyFileW
GetUserDefaultLangID
CreateThread
GetCPInfo
Sleep
DeleteFileW
GetFileSize
GetConsoleMode
GetStdHandle
GetFileTime
ExitThread
FindAtomA
GetCurrentThread
OpenFile
GlobalFree
GetCurrentThreadId
GetConsoleMode
GetCurrentProcess
CreateDirectoryA
Sleep
GetFileTime
GetCurrentThread
GetUserDefaultLangID
GetCPInfo
GetCurrentProcessId
CreateProcessA
FindFirstFileA
GetConsoleOutputCP
CreateProcessA
GetCommandLineA
CopyFileW
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetComputerNameA
GlobalFree
DeleteFileA
ExitProcess
GetUserDefaultLangID
GetCPInfo
OpenFile
GetConsoleMode
GetCurrentThread
GetUserDefaultLangID
ExitProcess
FindFirstFileA
DeleteFileA
GetCurrentProcess
GetCPInfo
FindAtomA
GetLastError
OpenFile
CreateThread
GetCommandLineA
ExitThread
GetOEMCP
GetFileTime
CreateDirectoryA
GetCommandLineA
CopyFileW
GetStdHandle
GetUserDefaultLangID
CreateProcessA
DeleteAtom
GetCurrentThread
CreateThread
FindFirstFileA
GetComputerNameA
GetConsoleOutputCP
GetCurrentThreadId
OpenFile
GetCurrentProcess
Sleep
CreateProcessA
Sleep
GetCPInfo
CreateThread
GetCurrentThreadId
GetCurrentProcessId
ExitThread
GetCurrentProcess
CreateDirectoryA
GlobalFree
FindAtomA
FindFirstFileA
GetFileTime
GetConsoleOutputCP
GetStdHandle
ExitProcess
GetOEMCP
GetCommandLineA
GetLastError

user32

GetDlgItem
AppendMenuW
GetCursor
CloseWindow
DrawTextA
IsMenu
IsWindow
GetMenu
EndDialog
DialogBoxParamA
CreateIcon
GetWindowTextA
DrawTextW
DrawIcon
IsWindow
LoadMenuA
LoadCursorA
EndDialog
InsertMenuA
CopyRect
DrawTextW
GetDlgItem
GetMenu
BlockInput
DialogBoxParamA
GetWindowTextLengthA
DrawTextA
DrawIcon
CopyImage
GetFocus
IsMenu
CreateIcon
AlignRects

Sections

.itext
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 109KB - Virtual size: 373KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f1f257fcd7fa8e90e2f2c7ca7a4a56e8

Headers

File Characteristics

Imports

kernel32

user32

Sections

.itext Size: 26KB - Virtual size: 25KB

.rdata Size: 7KB - Virtual size: 7KB

.init Size: 109KB - Virtual size: 373KB

.idata Size: 5KB - Virtual size: 5KB

.itext
Size: 26KB - Virtual size: 25KB

.rdata
Size: 7KB - Virtual size: 7KB

.init
Size: 109KB - Virtual size: 373KB

.idata
Size: 5KB - Virtual size: 5KB