00d776cbec6489cdb5596cdb6e06b513_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

00d776cbec6489cdb5596cdb6e06b513_JaffaCakes118
Size

449KB
MD5

00d776cbec6489cdb5596cdb6e06b513
SHA1

313136883f3f5a0f2a3a858491dc89eac4145aae
SHA256

e18dbb9757026732eb84ebff9dafb42a38cad9688eb58b99b181c82b624a98d7
SHA512

d22d65b4b298ae832f3497dd3c88f0d6453948b87b02e145bebc880f988fc7b1b28bb9c53c2ef0e6e554d1af717fc4a8f3c944afcabc4d012581f967248d60c1
SSDEEP

12288:LiFRlUSHYDnFGTTNJLENbjrWVfpEfuATU4adAW:LB7CJo8Ku

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00d776cbec6489cdb5596cdb6e06b513_JaffaCakes118

Files

00d776cbec6489cdb5596cdb6e06b513_JaffaCakes118
.exe windows:4 windows x86 arch:x86

98caeb2c6eae9e70adb2edeb0e8a89d7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetStartupInfoW
WideCharToMultiByte
IsDebuggerPresent
GetProcAddress
GetStringTypeW
HeapReAlloc
LCMapStringA
IsValidLocale
GetEnvironmentStrings
GetCurrentProcessId
LeaveCriticalSection
ReadConsoleOutputCharacterW
EnumSystemLocalesA
MultiByteToWideChar
SetUnhandledExceptionFilter
GetTimeFormatA
GlobalFlags
SetConsoleCtrlHandler
Sleep
WriteFile
SetHandleCount
GetProfileStringW
GetModuleFileNameW
GetUserDefaultLCID
GetAtomNameA
GetCurrentThread
FindResourceA
VirtualFree
ExitProcess
GetTickCount
FindFirstFileExW
LCMapStringW
HeapFree
CompareStringA
GetModuleFileNameA
GetLocaleInfoA
LoadLibraryA
QueryPerformanceCounter
FindNextFileA
VirtualAlloc
GetCommandLineW
CreateEventW
SetLastError
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
TlsGetValue
CompareStringW
FreeEnvironmentStringsA
GetCPInfo
InitializeCriticalSection
SetEnvironmentVariableA
GetStdHandle
VirtualUnlock
GetSystemTimeAsFileTime
DeleteCriticalSection
lstrcmpiW
GetCalendarInfoW
EnterCriticalSection
FreeEnvironmentStringsW
UnlockFileEx
InterlockedIncrement
GetVersionExA
TlsFree
GetDiskFreeSpaceW
GetACP
InterlockedDecrement
TlsSetValue
GetStartupInfoA
IsValidCodePage
GetCommandLineA
InterlockedCompareExchange
InterlockedExchange
GetEnvironmentStringsW
TlsAlloc
GlobalCompact
HeapCreate
CreateMailslotW
CopyFileExA
GetTimeZoneInformation
GetProcessHeap
HeapAlloc
HeapSize
GetFileType
GetThreadSelectorEntry
GetOEMCP
VirtualQuery
GetModuleHandleA
HeapDestroy
GetDateFormatA
GetLocaleInfoW
RtlUnwind
TryEnterCriticalSection
UnhandledExceptionFilter
CreateEventA
GetStringTypeA
FreeLibrary

gdi32

CreateICW
SetWindowExtEx
GetTextCharacterExtra
SelectClipRgn
CreateEllipticRgnIndirect
GetFontData
EnumICMProfilesA
EndPath
SwapBuffers
IntersectClipRect
ResetDCW
FrameRgn
GetCharacterPlacementW
GetClipBox
SetDIBColorTable

Sections

.text
Size: 133KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 311KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

98caeb2c6eae9e70adb2edeb0e8a89d7

Headers

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 133KB - Virtual size: 132KB

.data Size: 311KB - Virtual size: 326KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 133KB - Virtual size: 132KB

.data
Size: 311KB - Virtual size: 326KB

.rsrc
Size: 4KB - Virtual size: 4KB