04b8330e99cd20579b5a7bc9cb5c6585_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

04b8330e99cd20579b5a7bc9cb5c6585_JaffaCakes118
Size

125KB
MD5

04b8330e99cd20579b5a7bc9cb5c6585
SHA1

a64fc096821093ad57eb4ce91048140af8034ee9
SHA256

f30ac76f3309aa58a16ac97ae1b665954cb933336f693081d33a9db4bcef6e3b
SHA512

6a7ab39824e07a5deabfb701f8ef2e715c7da0b50d518c1d0d84b708c9f3478a2ee62e12bbf677fc6f69711e56a38e78750a06b847ad1de934cace9007824e17
SSDEEP

1536:GQNsBkDsB1wYA7p+Ia/ijCsHjOcOX3GAMrvVWbkq:GHWDsJYYIEijCMdrrvw4q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04b8330e99cd20579b5a7bc9cb5c6585_JaffaCakes118

Files

04b8330e99cd20579b5a7bc9cb5c6585_JaffaCakes118
.exe windows:1 windows x86 arch:x86

a07515eeb151f07fd0a88b5cb759dabf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
GetLastError
CreateFileW
FormatMessageW
SetUnhandledExceptionFilter
WideCharToMultiByte
GetCurrentProcessId
DeleteCriticalSection
GetSystemTimeAsFileTime
HeapFree
GetModuleHandleA
VirtualAlloc
SetEvent
InterlockedIncrement
GetStartupInfoA
UnhandledExceptionFilter
UnhandledExceptionFilter
GetModuleFileNameA
WaitForSingleObject
LocalFree
GetCurrentProcess
GetCurrentProcess
InterlockedIncrement
FreeLibrary
GetCurrentProcess
GetStartupInfoW
QueryPerformanceCounter
GetModuleHandleW
GetCurrentProcessId
GetModuleHandleA
GetProcAddress
SetFilePointer
FreeLibrary
LoadLibraryA
SetEvent
InterlockedDecrement
HeapDestroy
GetSystemTimeAsFileTime
LoadLibraryA
InterlockedDecrement
HeapAlloc
SetLastError
FreeLibrary
EnterCriticalSection
ExitProcess
GetStartupInfoW
GetTickCount
GetCommandLineW
GetModuleFileNameA
CloseHandle
CloseHandle
CreateFileW
TerminateProcess
InterlockedDecrement
GetVersionExA
CreateThread
GetCommandLineA
GetACP
WaitForSingleObject
GetProcessHeap
GetProcAddress
GetLastError
GetSystemTimeAsFileTime
WideCharToMultiByte
InterlockedDecrement
TerminateProcess
lstrcmpiW
SetLastError
UnhandledExceptionFilter
LocalFree
lstrcmpiW
SetUnhandledExceptionFilter
GetTickCount
LocalFree
GetACP
HeapAlloc
FreeLibrary
GetTickCount
GetProcAddress
HeapReAlloc
LoadLibraryW
GetProcessHeap
VirtualAlloc
lstrcmpiW
CreateFileW
SetUnhandledExceptionFilter
FormatMessageW
InitializeCriticalSection
LocalAlloc
SetFilePointer
LeaveCriticalSection
lstrcpyW
SetFilePointer
GetLastError
HeapAlloc
GetProcessHeap
DeleteCriticalSection
SetEvent
FreeLibrary
QueryPerformanceCounter
lstrlenW
GetModuleFileNameA
GetModuleHandleA
SetEvent
UnhandledExceptionFilter
GetModuleHandleW
HeapReAlloc
EnterCriticalSection
GetModuleHandleW
GetACP
lstrcmpiW
GetCommandLineW
FreeLibrary
SetLastError
lstrcpyW
InterlockedIncrement
LocalAlloc
GetProcessHeap
SetLastError
SetEvent
InterlockedIncrement
LoadLibraryW
SetLastError
HeapDestroy
GetVersionExA
HeapFree
EnterCriticalSection
LocalAlloc
FreeLibrary
EnterCriticalSection
GetProcAddress
GetCommandLineW
InterlockedDecrement
LocalAlloc
GetCurrentProcess

Sections

.elut
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.jbfi
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fjeb
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hfcj
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wjyl
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vyty
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cglo
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jjna
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ynsx
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qnui
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tupr
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a07515eeb151f07fd0a88b5cb759dabf

Headers

File Characteristics

Imports

kernel32

Sections

.elut Size: 102KB - Virtual size: 120KB

.jbfi Size: 1024B - Virtual size: 4KB

.fjeb Size: 1KB - Virtual size: 4KB

.hfcj Size: 4KB - Virtual size: 4KB

.wjyl Size: 512B - Virtual size: 4KB

.vyty Size: 512B - Virtual size: 4KB

.cglo Size: 512B - Virtual size: 4KB

.jjna Size: 9KB - Virtual size: 8KB

.rsrc Size: 2KB - Virtual size: 4KB

.ynsx Size: 512B - Virtual size: 4KB

.qnui Size: 1024B - Virtual size: 4KB

.tupr Size: 512B - Virtual size: 4KB

.elut
Size: 102KB - Virtual size: 120KB

.jbfi
Size: 1024B - Virtual size: 4KB

.fjeb
Size: 1KB - Virtual size: 4KB

.hfcj
Size: 4KB - Virtual size: 4KB

.wjyl
Size: 512B - Virtual size: 4KB

.vyty
Size: 512B - Virtual size: 4KB

.cglo
Size: 512B - Virtual size: 4KB

.jjna
Size: 9KB - Virtual size: 8KB

.rsrc
Size: 2KB - Virtual size: 4KB

.ynsx
Size: 512B - Virtual size: 4KB

.qnui
Size: 1024B - Virtual size: 4KB

.tupr
Size: 512B - Virtual size: 4KB