568e2157ee82b92c8a31a7ba0649842f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

568e2157ee82b92c8a31a7ba0649842f_JaffaCakes118
Size

677KB
MD5

568e2157ee82b92c8a31a7ba0649842f
SHA1

9c50a7bc23532d3eca2179e29cb39cbde5d4197f
SHA256

afdacb83e8a612e3c087d98bdc5aa8556d1ccba908ff8d98ae858afb7cf73751
SHA512

f0ddef7ee472501431c3a87c0910dee5a435d7c118ec28f850e3f6e684098debea5776636d5b1d39a35a0c7a64c8d771a93e6e7a460a9def515ac22a4cb1a145
SSDEEP

12288:LH8jVIMYc/JNoMb3wnOIKuhoGSy4Zhk0WhtyuTXI1E0U:LHFM7JjbgpK8OG9hfTXI1Ef

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
568e2157ee82b92c8a31a7ba0649842f_JaffaCakes118

Files

568e2157ee82b92c8a31a7ba0649842f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

093d163b031d4fb9e5dead94c466f98c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VariantClear
SysFreeString
VariantInit
SysAllocString
SysAllocStringLen

kernel32

GetOEMCP
VirtualAlloc
Sleep
VirtualFree
UnmapViewOfFile
GetModuleHandleW
GetACP
CloseHandle
ReadFile
GetModuleHandleA
MapViewOfFile
RaiseException
GetCommandLineA
HeapSize
GetCurrentProcessId
GetEnvironmentStrings
lstrlenW
LCMapStringA
GetConsoleCP
GlobalFree
GetSystemInfo
HeapCreate
SetStdHandle
GetLastError
LeaveCriticalSection
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateEventA
ExpandEnvironmentStringsA
CompareStringA
GetCurrentThreadId
CompareStringW
GetStartupInfoW
GetProcAddress
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
TlsAlloc
GetTickCount
QueryPerformanceCounter
FreeLibrary
SetHandleCount
EnterCriticalSection
WriteConsoleW
GetVersion
GetLocaleInfoA
SetEndOfFile
GlobalAlloc
WriteConsoleA
TerminateProcess
SetUnhandledExceptionFilter
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
HeapAlloc
GetModuleFileNameW
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
InitializeCriticalSection
LocalFree
SetEvent
GetStringTypeW
GetSystemTimeAsFileTime
WriteFile
WideCharToMultiByte
FreeEnvironmentStringsW
LocalAlloc
GetConsoleMode
GetCurrentProcess
GetExitCodeProcess
GetFileAttributesW
HeapDestroy
GetProcessHeap
FreeEnvironmentStringsA
GetEnvironmentStringsW
GetStdHandle
TlsGetValue
GetEnvironmentVariableA
HeapFree
RtlUnwind
GetCPInfo
HeapReAlloc
LCMapStringW
GetStringTypeA
InterlockedIncrement

user32

ScreenToClient
SetWindowTextA
EndDialog
SetWindowLongA
ReleaseCapture
GetWindowRect
GetSystemMetrics
DefWindowProcA
BeginPaint
SetFocus
DispatchMessageA
SetTimer
LoadStringA
LoadCursorA
EnableWindow
ShowWindow
GetParent
DestroyWindow
ReleaseDC
GetDC
SetForegroundWindow
EndPaint
IsWindow
PostQuitMessage
DestroyMenu
MapWindowPoints
GetDesktopWindow
MessageBoxA
IsWindowVisible
CallWindowProcA
IsWindowEnabled
SetCursor

gdi32

DeleteObject
DeleteDC
GetStockObject
CreateCompatibleDC
CreateSolidBrush

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 624KB - Virtual size: 623KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

093d163b031d4fb9e5dead94c466f98c

Headers

File Characteristics

Imports

oleaut32

kernel32

user32

gdi32

Sections

.text Size: 21KB - Virtual size: 21KB

.rdata Size: 624KB - Virtual size: 623KB

.data Size: 30KB - Virtual size: 33KB

.rsrc Size: 1024B - Virtual size: 584B

.text
Size: 21KB - Virtual size: 21KB

.rdata
Size: 624KB - Virtual size: 623KB

.data
Size: 30KB - Virtual size: 33KB

.rsrc
Size: 1024B - Virtual size: 584B