1333a58b79da7d28912b57cb8fa9ec88_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1333a58b79da7d28912b57cb8fa9ec88_JaffaCakes118
Size

85KB
MD5

1333a58b79da7d28912b57cb8fa9ec88
SHA1

2cc1664d05b830f8b670b7a5d2feb95228567461
SHA256

9f4d29e9447d0df8809628e443e8031fb65f8b247317db353da898618d1c9f22
SHA512

ce25bfadcc84030ff0023107a4c82e97f21da23b87d22536147a9ac728033800682bf716922d0a9a12dd4d0ea80112e462cfc9bf36d2d9488930c12caff1ee17
SSDEEP

1536:s4iBjzSBWh5KsAmuvtsJUtD6Oba1xMUtfupkcllt9QtbfeZ57S5E:s49BY5KsA1yUg1+If5clnat6ZRSK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1333a58b79da7d28912b57cb8fa9ec88_JaffaCakes118

Files

1333a58b79da7d28912b57cb8fa9ec88_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3600c3152f43a7643735443cf70a58a9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
QueryPerformanceCounter
GetLocalTime
MoveFileExA
CreateFileW
GetModuleHandleA
GetDateFormatA
SizeofResource
lstrcmpA
GetCurrentProcess
WriteConsoleA
GetCurrentDirectoryA
GetLastError
GetVolumeInformationA
CompareStringW
CompareStringA
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
WriteFile
RtlUnwind
GetStartupInfoA
GlobalUnlock
GetLocaleInfoW
MulDiv
GlobalAlloc
QueryPerformanceFrequency
GlobalFree
OpenProcess
GetVersionExW
IsBadReadPtr
SetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetTimeZoneInformation
HeapFree
HeapAlloc
GetCommandLineA
GetVersion
ExitProcess
GetProcAddress
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
TerminateProcess
UnhandledExceptionFilter
GetModuleFileNameA

user32

GetForegroundWindow
GetWindowThreadProcessId
GetSystemMetrics
InflateRect
SetParent
SetCursor
InsertMenuItemW
IntersectRect
GetWindowRect
DialogBoxIndirectParamA
DefWindowProcA
CreateDialogIndirectParamA
GetClientRect

gdi32

TextOutA
Escape
SetAbortProc
AbortDoc
SetRectRgn
CombineRgn
EndDoc
GetDeviceCaps
RectVisible

ole32

StgCreateDocfile
CoInitialize
OleCreate
CoUninitialize
CoSuspendClassObjects

version

GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 383KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3600c3152f43a7643735443cf70a58a9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

version

Sections

.text Size: 68KB - Virtual size: 66KB

.data Size: 76KB - Virtual size: 383KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 68KB - Virtual size: 66KB

.data
Size: 76KB - Virtual size: 383KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB