12b5e8e5b235fbedf4e8b5f491bb4ec0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

12b5e8e5b235fbedf4e8b5f491bb4ec0_JaffaCakes118
Size

369KB
MD5

12b5e8e5b235fbedf4e8b5f491bb4ec0
SHA1

3eeb51bf9e86fcd6a3b802aebae4153c8aec5c90
SHA256

37fcb898064cec5e2e7374b2a5908b41a6c709b8556c1f022b78ecd5fcb7bcd6
SHA512

8f4ae321292598f1980fe0ab4728950096a633e610043e942e12e41eb71bb7fa1e63cd0e197180ef07d27f82bc8427710223a5b4d5044720b63c389301225955
SSDEEP

6144:724CfVP23ZUJk32kzlYUNWNxmKCHdnM/7fFL0PJ8V72hqEh7b/stbH78oenT/:afV8ZU1kziUNv9n45IB8V72gEh3UtiD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
12b5e8e5b235fbedf4e8b5f491bb4ec0_JaffaCakes118

Files

12b5e8e5b235fbedf4e8b5f491bb4ec0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1d37cee305e9188ae433f1c7541bdb5e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetModuleHandleA
Sleep
GetCurrentDirectoryA
GetProcessHeap
VirtualFree
SetLastError
CloseHandle
SetThreadPriority
TerminateThread
GetProcAddress
CreateThread
GetComputerNameA
FreeLibrary
VirtualProtect
VirtualAlloc
GetProcessVersion
GetTickCount
ExitProcess
GetStartupInfoA
HeapAlloc
WaitForSingleObject
ExitThread
GetACP
GetSystemInfo
GetCPInfo
GetLocaleInfoA
LCMapStringW
RtlUnwind
GetLastError
WriteFile
FlushFileBuffers
TerminateProcess
GetCurrentProcess
SetFilePointer
GetStdHandle
SetStdHandle
HeapFree
WideCharToMultiByte
InterlockedExchange
VirtualQuery
RaiseException
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
HeapReAlloc
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
GetOEMCP

gdi32

GetDeviceCaps

user32

GetDesktopWindow
wsprintfA
LoadStringA
SendMessageA
GetWindowDC
ReleaseDC
MessageBoxA
GetSystemMetrics

winmm

timeBeginPeriod

Sections

.text
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata1
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

B/1
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

B/2
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.var0
Size: 213KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.var1
Size: - Virtual size: 232KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug
Size: 4KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1d37cee305e9188ae433f1c7541bdb5e

Headers

File Characteristics

Imports

kernel32

gdi32

user32

winmm

Sections

.text Size: 76KB - Virtual size: 73KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 8KB - Virtual size: 12KB

.idata1 Size: 4KB - Virtual size: 24B

B/1 Size: 4KB - Virtual size: 4KB

B/2 Size: 4KB - Virtual size: 4KB

.rsrc Size: 28KB - Virtual size: 26KB

.reloc Size: 4KB - Virtual size: 3KB

.var0 Size: 213KB - Virtual size: 326KB

.var1 Size: - Virtual size: 232KB

.debug Size: 4KB - Virtual size: 64KB

.text
Size: 76KB - Virtual size: 73KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 8KB - Virtual size: 12KB

.idata1
Size: 4KB - Virtual size: 24B

B/1
Size: 4KB - Virtual size: 4KB

B/2
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 28KB - Virtual size: 26KB

.reloc
Size: 4KB - Virtual size: 3KB

.var0
Size: 213KB - Virtual size: 326KB

.var1
Size: - Virtual size: 232KB

.debug
Size: 4KB - Virtual size: 64KB