45359f2d761825c67102677dcc9569c0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

45359f2d761825c67102677dcc9569c0_JaffaCakes118
Size

151KB
MD5

45359f2d761825c67102677dcc9569c0
SHA1

6fbe4bab04b5a5960fce4dfa4e90d4def63b4f45
SHA256

b98a32b08d3515bb5b46a2305b28b3deb99c6f3748ada1af8c64e0699192caf3
SHA512

0d56b4400f5a3f7540b697001cd3d5a6e7b2e5366640071c0167fd1af5bad7ea6590e5fc9dab9d13f59012197e8cec4b5e2556f80ef60d814deea1d7c4a41ac0
SSDEEP

3072:zZj3Gp+23/7zWJ+xzJNw9lIU566xpsEt6u:9S+23zzWJmJNw9lIW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45359f2d761825c67102677dcc9569c0_JaffaCakes118

Files

45359f2d761825c67102677dcc9569c0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9811a2c3c314eb7fc286d2b1f940644d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExW
SetFilePointerEx
WaitNamedPipeA
SetConsoleTitleW
FindResourceExW
OpenFileMappingA
EnumTimeFormatsA
GetNamedPipeHandleStateW
GetTapeStatus
GetDefaultCommConfigW
VerLanguageNameW
VirtualAlloc
SleepEx
GetEnvironmentVariableW
SetStdHandle
IsBadCodePtr
GetTimeFormatA
lstrlen
lstrcpyW
FindNextFileA
EraseTape
CreateThread
GetConsoleAliasExesLengthW
FindFirstFileW
CreateProcessA
GetOEMCP
GetConsoleAliasExesA
VirtualFree
GetStringTypeExW
GetFileTime
GetConsoleFontSize
lstrcpyA
FreeLibrary
GlobalGetAtomNameA
CreateWaitableTimerW
SignalObjectAndWait
GetSystemTime
MoveFileWithProgressW
SetMessageWaitingIndicator
GetQueuedCompletionStatus
SetFilePointer
LoadLibraryA
GetConsoleScreenBufferInfo
CreateFileMappingA
lstrcatA
VerifyVersionInfoW
CloseHandle
LoadLibraryW
GetPrivateProfileStringA
OutputDebugStringA
ScrollConsoleScreenBufferW
SetErrorMode
WinExec
VirtualQuery
GlobalCompact
GetDateFormatW
LocalCompact
GetConsoleMode
CopyFileA
GetTempFileNameW
FormatMessageA
GetConsoleWindow
Beep
HeapSize
GetCommTimeouts
RtlZeroMemory
lstrcpy
GetFileSize
GetCurrentThreadId
GetOverlappedResult
CreateMailslotA
GetExitCodeThread
CopyFileW
Heap32ListFirst
GetConsoleOutputCP
ReadConsoleOutputCharacterA
SetEndOfFile
ExitProcess
GetThreadPriorityBoost
IsBadStringPtrA
WritePrivateProfileSectionW
Toolhelp32ReadProcessMemory
CreateEventW
SetConsoleCursorInfo
SetHandleInformation
SetDefaultCommConfigA
EnumDateFormatsA
WriteFileEx
LCMapStringA
WaitForSingleObject
GetCurrentConsoleFont
SetUnhandledExceptionFilter
CreateHardLinkA
GetCPInfo
VirtualAllocEx

user32

LoadIconA
LoadCursorA

gdi32

GetStockObject

msvcrt

memset
memcpy

advapi32

RegOpenKeyW

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata6
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata5
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata4
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata3
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 492B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9811a2c3c314eb7fc286d2b1f940644d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

advapi32

Sections

.text Size: 14KB - Virtual size: 14KB

.rdata6 Size: 2KB - Virtual size: 1KB

.rdata5 Size: 1024B - Virtual size: 1000B

.rdata4 Size: 10KB - Virtual size: 9KB

.rdata3 Size: 1024B - Virtual size: 1000B

.rdata2 Size: 1024B - Virtual size: 1000B

.rdata Size: 98KB - Virtual size: 97KB

.data Size: 3KB - Virtual size: 3KB

.rsrc Size: 19KB - Virtual size: 18KB

.reloc Size: 512B - Virtual size: 492B

.text
Size: 14KB - Virtual size: 14KB

.rdata6
Size: 2KB - Virtual size: 1KB

.rdata5
Size: 1024B - Virtual size: 1000B

.rdata4
Size: 10KB - Virtual size: 9KB

.rdata3
Size: 1024B - Virtual size: 1000B

.rdata2
Size: 1024B - Virtual size: 1000B

.rdata
Size: 98KB - Virtual size: 97KB

.data
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 19KB - Virtual size: 18KB

.reloc
Size: 512B - Virtual size: 492B