11f0266e6b8143878981ca8bcf05602b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

11f0266e6b8143878981ca8bcf05602b_JaffaCakes118
Size

2.1MB
MD5

11f0266e6b8143878981ca8bcf05602b
SHA1

b1d9964915bcc0a46d534feadef7670110a36da9
SHA256

5132922382c579c1a883b4ad240570ba9a5f71c45abf0b3e8e746622b4ebbdb3
SHA512

707a1e117ab19e6cdf0a00239d972bd6cbf82d08abc1af6dcc57cefb75aef6937460960c2aa3918ce006075812edc290a6b18d672bca516499550fb7d4b1e60f
SSDEEP

24576:6sl4T9yjSxaPCcq23XxDQia74TKROqOXErWyTpETTIw3EsHwE2HGv:6GrjSxaPCd2DmelqOXEr1pKEAGG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
11f0266e6b8143878981ca8bcf05602b_JaffaCakes118

Files

11f0266e6b8143878981ca8bcf05602b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f02d2f669ca2265addc78d5134f37fd9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetComputerNameA
CopyFileA
HeapReAlloc
WriteFile
HeapFree
CloseHandle
HeapAlloc
GlobalFree
CreateDirectoryA
FindResourceW
AddAtomA
DeleteFileA
FindResourceA
FindNextVolumeA
HeapFree
FindResourceW
GetFileTime
CreateMutexA
CreateDirectoryA
CreateDirectoryA
GlobalFree
CreateMutexW
GlobalFree
GetStdHandle
GetFileSize
Sleep
HeapAlloc
GlobalFree
GlobalFree
DeleteFileW
Sleep
FindResourceA
FindResourceW
HeapReAlloc
GlobalAlloc
GetFileTime
DeleteFileA
CopyFileA
CloseHandle
FindNextVolumeA
GlobalFree
ExitProcess
GetStdHandle
GetComputerNameA
GlobalFree
FindNextVolumeA
CreateMutexW
CreateMutexA
FindFirstFileA
CloseHandle
GlobalFree
GlobalAlloc
ReadFile
DeleteFileA
GetFileSize
ReadFile
OpenFileMappingA
CopyFileA
FindResourceA
FindResourceW
ReadFile
WriteFile
Sleep
CopyFileA
Sleep
CreateFileA
GlobalFree
HeapReAlloc
GetFileTime
GlobalAlloc
GetCPInfo
WriteFile
GetComputerNameA
ExitProcess
GetCPInfo
CreateFileA
DeleteFileA
CopyFileA
OpenFileMappingA
DeleteFileA
FindNextFileA
HeapFree
GetStdHandle
Sleep
DeleteFileA
GlobalAlloc
HeapFree
GlobalFree
CreateMutexW
GetCPInfo
AddAtomA
GetStdHandle
CreateDirectoryA
GetStdHandle
FindNextFileA
GetComputerNameA
WriteFile
CreateMutexW
FindResourceW
GetFileSize
GetFileSize
GetFileTime
HeapFree
CloseHandle
ExitProcess
GlobalAlloc
AddAtomA
WriteFile
DeleteFileW
GlobalAlloc
HeapReAlloc
CopyFileA
CreateMutexW
HeapReAlloc
ReadFile
Sleep
FindNextVolumeA
GetComputerNameA
CreateFileA
CopyFileA
CreateDirectoryA
WriteFile
GlobalFree
HeapAlloc
FindNextVolumeA
GetFileSize
GlobalFree
GetFileSize
OpenFileMappingA
Sleep
GlobalFree
FindNextVolumeA
CreateMutexA
FindResourceA
CreateDirectoryA
CreateFileA
DeleteFileA
HeapReAlloc
WriteFile
CreateFileA
ExitProcess
ReadFile
HeapFree
GetComputerNameA
CopyFileA
FindResourceA
FindNextVolumeA
FindNextFileA
FindFirstFileA
GetCPInfo
GetFileSize
AddAtomA
Sleep
ExitProcess
CreateMutexW
FindNextVolumeA
GlobalAlloc
DeleteFileW
HeapAlloc
WriteFile
GetFileTime
FindNextFileA
CreateMutexW
GlobalAlloc
CreateMutexW
OpenFileMappingA
HeapReAlloc
CreateMutexA
DeleteFileW
GetComputerNameA
GetStdHandle
CreateMutexA
HeapAlloc
HeapReAlloc
FindNextFileA
CopyFileA
GlobalFree
HeapReAlloc
CreateMutexA
HeapFree
CreateDirectoryA
AddAtomA
GetCPInfo
GetStdHandle
CreateDirectoryA
CopyFileA
HeapFree
FindResourceW
FindResourceA
HeapAlloc
GetFileSize
Sleep
DeleteFileW
CreateMutexA
DeleteFileA
FindResourceA
CloseHandle
GetFileSize
GetCPInfo
Sleep
FindResourceA
FindResourceW
DeleteFileW

Sections

code
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.init
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 24KB - Virtual size: 4.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 193B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f02d2f669ca2265addc78d5134f37fd9

Headers

File Characteristics

Imports

kernel32

Sections

code Size: 2.0MB - Virtual size: 2.0MB

.init Size: 12KB - Virtual size: 8KB

.edata Size: 8KB - Virtual size: 4KB

.data Size: 24KB - Virtual size: 4.9MB

.tls Size: 4KB - Virtual size: 193B

.rdata Size: 4KB - Virtual size: 536B

.idata Size: 16KB - Virtual size: 14KB

.rsrc Size: 16KB - Virtual size: 14KB

code
Size: 2.0MB - Virtual size: 2.0MB

.init
Size: 12KB - Virtual size: 8KB

.edata
Size: 8KB - Virtual size: 4KB

.data
Size: 24KB - Virtual size: 4.9MB

.tls
Size: 4KB - Virtual size: 193B

.rdata
Size: 4KB - Virtual size: 536B

.idata
Size: 16KB - Virtual size: 14KB

.rsrc
Size: 16KB - Virtual size: 14KB