100db34b659752e7a4bc7b1c2dcf5d42_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

100db34b659752e7a4bc7b1c2dcf5d42_JaffaCakes118
Size

368KB
MD5

100db34b659752e7a4bc7b1c2dcf5d42
SHA1

50a7f81b16f964a564cb09354b735fffbfc3e16c
SHA256

ee2a1092cdb71d5fde31ea307ef0a07a0a5ef0a25ae82f85816d64df32996621
SHA512

d5810cb7d4b0099949c2e2c3b1ff44078271846a05eade701dbbc75f6fe387e3e2442149b5ebd386b7f61ee29cad5a64c88f64cf2b53a792d5bfb7dc3a0ab262
SSDEEP

6144:vo3sXv4gASm0Cfo8bydf2q0wwCd0D5hVQMMEPJ8e0+CZtrZD17hBM5V429/BCQNM:9vjASmRjypfb6lhVMe0+2rT7mzoQ54KS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
100db34b659752e7a4bc7b1c2dcf5d42_JaffaCakes118

Files

100db34b659752e7a4bc7b1c2dcf5d42_JaffaCakes118
.exe windows:4 windows x86 arch:x86

496a2d723d9f7bfa01c8a83251a5f65c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidCodePage
SizeofResource
GetModuleHandleW
GlobalLock
GetACP
lstrcpynA
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
WideCharToMultiByte
GetCommandLineW
GetCurrentProcessId
GetEnvironmentStrings
FileTimeToLocalFileTime
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GlobalFree
HeapCreate
GetLastError
InterlockedIncrement
GetCurrentThreadId
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
WaitForMultipleObjects
FindFirstFileW
CreateFileMappingA
CompareStringA
FindFirstFileA
lstrcmpA
GetProcessHeap
GetProcAddress
DeleteFileW
DeleteFileA
LCMapStringW
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
TlsAlloc
GetTickCount
QueryPerformanceCounter
GetOEMCP
UnmapViewOfFile
SetHandleCount
EnterCriticalSection
HeapFree
LeaveCriticalSection
GetVersion
SetEndOfFile
GetConsoleMode
VirtualQuery
TerminateProcess
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
CreateMutexA
MultiByteToWideChar
LoadLibraryExW
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
CreateEventW
LocalFree
FreeLibrary
SetFileAttributesA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WaitForSingleObject
WriteFile
InterlockedExchange
GetStringTypeA
GetCPInfo
GetTempPathA
SetStdHandle
ExitProcess
LocalAlloc
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
FindNextFileA
SetEvent
FileTimeToSystemTime
GetConsoleOutputCP
GetStdHandle
lstrlenA
VirtualFree
Sleep
IsBadReadPtr
GetVersionExW
VirtualAlloc

user32

ReleaseDC
LoadIconA
GetDlgItem
SetTimer
GetSubMenu
SetCapture
GetWindowRect
GetSystemMetrics
DefWindowProcA
KillTimer
BeginPaint
SetFocus
CreateWindowExA
GetWindowLongA
IsIconic
TranslateMessage
EnableWindow
GetParent
DestroyWindow
GetDC
EndPaint
DispatchMessageA
IsWindow
SetWindowPos
PostQuitMessage
SetForegroundWindow
MessageBoxA
GetSysColor
SendMessageA
GetClientRect
SetCursor

advapi32

RegSetValueExW
RegOpenKeyExA
RegCloseKey
RegCreateKeyExA

ole32

CoCreateInstance
CoTaskMemAlloc

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 345KB - Virtual size: 345KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

496a2d723d9f7bfa01c8a83251a5f65c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 345KB - Virtual size: 345KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 345KB - Virtual size: 345KB

.rsrc
Size: 1KB - Virtual size: 1KB