0b01e5ef9ac4d9fe8c3a41df663a856d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0b01e5ef9ac4d9fe8c3a41df663a856d_JaffaCakes118
Size

256KB
MD5

0b01e5ef9ac4d9fe8c3a41df663a856d
SHA1

76d85de05f742b71db41d956367d78b6002372a6
SHA256

9b7feb8201660c3dc238a8b4fb6dbafb65d7c951ce7a47b14a549a037613e1e2
SHA512

decfbdd7e0d6fd15a40f4df9699902081fd6aa6a73025cefca51541989fd68b0e99af414b79d8ee50a179edce176a2d9e90c7b4f337f267e514e4ba1eb8dd533
SSDEEP

3072:VU/+TnwFWJgFzlv1m7C1n79FVrcK0f7odPR+v:VU2nwFWGFz6C1niqdPR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b01e5ef9ac4d9fe8c3a41df663a856d_JaffaCakes118

Files

0b01e5ef9ac4d9fe8c3a41df663a856d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

20345c6d607813a4315c2bded0d0b4df

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
FindResourceA
CloseHandle
GetFileTime
CloseHandle
GetStdHandle
HeapFree
CreateMutexW
HeapAlloc
CreateDirectoryA
HeapReAlloc
GlobalFree
AddAtomA
OpenFileMappingA
FindResourceW
FindResourceW
GlobalFree
Sleep
GlobalAlloc
GetFileSize
GetComputerNameA
CopyFileA
HeapAlloc
GetComputerNameA
FindFirstFileA
HeapAlloc
CreateMutexW
GlobalFree
GetFileTime
ReadFile
AddAtomA
HeapFree
FindNextFileA
GetCPInfo
Sleep
DeleteFileW
CloseHandle
FindResourceA
CreateFileA
CreateMutexW
DeleteFileW
GetFileSize
CreateMutexA
ReadFile
GlobalAlloc
WriteFile
CreateDirectoryA
CreateDirectoryA
OpenFileMappingA
GetStdHandle
ReadFile
HeapFree
FindResourceA
FindResourceA
Sleep
OpenFileMappingA
CreateMutexA
DeleteFileW
CopyFileA
FindFirstFileA
CreateMutexW
HeapFree
Sleep
ExitProcess
HeapReAlloc
FindNextFileA
DeleteFileA
CreateMutexA
DeleteFileW
CopyFileA
CreateDirectoryA
GlobalFree
CloseHandle
HeapReAlloc
GetCPInfo
Sleep
GetComputerNameA
CreateMutexA
FindFirstFileA
ReadFile
CreateFileA
GetFileTime
CreateFileA
DeleteFileA
GetFileSize
DeleteFileW
GetComputerNameA
GetStdHandle
GetFileTime
FindNextVolumeA
CreateMutexW
FindNextVolumeA
HeapReAlloc
DeleteFileA
FindNextFileA
DeleteFileW
FindFirstFileA
FindNextVolumeA
ReadFile
GlobalAlloc
GlobalFree
WriteFile
AddAtomA
CreateMutexW
CreateDirectoryA
FindFirstFileA
FindNextFileA
GetFileSize
GetComputerNameA
GlobalAlloc
DeleteFileA
FindResourceA
HeapFree
GetFileSize
GlobalFree
FindResourceA
CopyFileA
AddAtomA
ExitProcess
CloseHandle
FindFirstFileA
ReadFile
AddAtomA
WriteFile
HeapReAlloc
GetCPInfo
Sleep
FindResourceA
ExitProcess
CreateMutexA
CloseHandle
GetCPInfo
GlobalFree
AddAtomA
DeleteFileW
WriteFile
WriteFile
GetFileSize
DeleteFileW
GetComputerNameA
GetFileSize
HeapAlloc
GlobalAlloc
GlobalFree
OpenFileMappingA
GetCPInfo
HeapReAlloc
GetStdHandle
CopyFileA
CloseHandle
GlobalAlloc
Sleep
DeleteFileA
GetStdHandle
DeleteFileW
AddAtomA
GlobalAlloc
FindNextVolumeA
DeleteFileW
WriteFile
CreateMutexW
FindNextVolumeA
CreateMutexW
WriteFile
HeapAlloc
FindNextFileA
FindResourceA
GlobalFree
ExitProcess
CreateMutexA
FindResourceW
HeapReAlloc
GetFileTime
GlobalFree
DeleteFileA
HeapReAlloc
FindNextFileA
GetFileTime
HeapAlloc
FindFirstFileA
Sleep
HeapFree
GetFileSize
GetComputerNameA
CreateMutexA
WriteFile
GetFileSize
CreateFileA
GetFileTime
HeapAlloc
ExitProcess
FindNextFileA
HeapReAlloc
OpenFileMappingA
CreateFileA
CloseHandle
CloseHandle
FindResourceW
CreateDirectoryA
GetComputerNameA
GetFileTime
AddAtomA
GetCPInfo
CreateMutexA
FindNextFileA
HeapFree
FindResourceA
GetComputerNameA
CopyFileA
WriteFile
GetFileSize
FindFirstFileA
CreateMutexW
AddAtomA
GlobalAlloc
HeapReAlloc
ReadFile
GlobalFree
GetCPInfo
ExitProcess
HeapFree
WriteFile
OpenFileMappingA
CreateMutexW
DeleteFileW
GlobalFree
GlobalFree
AddAtomA
GlobalFree
AddAtomA
CreateDirectoryA
FindNextVolumeA
CloseHandle
GetFileTime
CloseHandle
DeleteFileA
Sleep
HeapAlloc
CloseHandle
DeleteFileW
OpenFileMappingA
HeapAlloc
GlobalAlloc
HeapReAlloc
FindResourceW
DeleteFileW
CreateDirectoryA
OpenFileMappingA
ReadFile
GetFileSize
GetFileSize
HeapReAlloc
FindNextVolumeA
CopyFileA
GlobalFree
CreateDirectoryA
Sleep
GlobalFree
ExitProcess
HeapFree
ReadFile
GetStdHandle
FindNextFileA
GetFileTime
FindFirstFileA
DeleteFileW
Sleep
DeleteFileA
HeapReAlloc
CreateMutexW
Sleep
FindNextVolumeA
GetComputerNameA

Sections

code
Size: 176KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 4.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 263B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20345c6d607813a4315c2bded0d0b4df

Headers

File Characteristics

Imports

kernel32

Sections

code Size: 176KB - Virtual size: 172KB

.tls Size: 12KB - Virtual size: 9KB

.edata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 4.8MB

.tls Size: 4KB - Virtual size: 263B

.rdata Size: 4KB - Virtual size: 536B

.idata Size: 16KB - Virtual size: 15KB

.rsrc Size: 24KB - Virtual size: 23KB

code
Size: 176KB - Virtual size: 172KB

.tls
Size: 12KB - Virtual size: 9KB

.edata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 4.8MB

.tls
Size: 4KB - Virtual size: 263B

.rdata
Size: 4KB - Virtual size: 536B

.idata
Size: 16KB - Virtual size: 15KB

.rsrc
Size: 24KB - Virtual size: 23KB