f24b67cbac0f488e428ec3cdf4bb4e24_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f24b67cbac0f488e428ec3cdf4bb4e24_JaffaCakes118
Size

147KB
MD5

f24b67cbac0f488e428ec3cdf4bb4e24
SHA1

63cf56344cb7e51ab0b7b9821ea51e255b7d1a7c
SHA256

cf551fd612d43c78502e0c155e8097f4e2d34205b14a1b317de27d80a2c77903
SHA512

bb56c6fb43ddb72edd4cf7f150aeea85aa3277b8c226b5abca6954724bc7b06c066647ecabb6764ed3d53bd4ae01eec9ac017261166804689422d58b248e57f1
SSDEEP

3072:KjcJEYaQWycpqzIH+dl6UWOed+wRQFDg4qlvqYMLFTXC:hFAy1d0xRQFvEvq/h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f24b67cbac0f488e428ec3cdf4bb4e24_JaffaCakes118

Files

f24b67cbac0f488e428ec3cdf4bb4e24_JaffaCakes118
.exe windows:4 windows x86 arch:x86

510580acfdad0796103df179e7c58b32

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetFileType
FindFirstFileW
CreateFileA
ReadConsoleInputA
FileTimeToLocalFileTime
GetTimeZoneInformation
SetConsoleCtrlHandler
ResumeThread
ReadConsoleA
GetModuleFileNameW
FindNextFileW
GetLogicalDrives
SetEndOfFile
WriteFile
MultiByteToWideChar
GetSystemDefaultLangID
CreateDirectoryW
QueryPerformanceCounter
DuplicateHandle
GetExitCodeProcess
SetUnhandledExceptionFilter
SetFileAttributesA
FindFirstFileA
CreateFileW
SystemTimeToFileTime
GetConsoleMode
GetProcAddress
CloseHandle
RemoveDirectoryA
GetSystemDefaultLCID
VirtualFree
RaiseException
TlsAlloc
GetStdHandle
LeaveCriticalSection
GetCurrentDirectoryW
FindClose
GetEnvironmentStrings
GetDriveTypeA
GetVersion
GetNumberOfConsoleInputEvents
GetFileAttributesW
GetDiskFreeSpaceA
LockFile
SetStdHandle
WriteConsoleA
EnterCriticalSection
LoadLibraryW
SetFileTime
GetCPInfo
SetEnvironmentVariableW
SetCurrentDirectoryW
GetFileAttributesA
FindNextFileA
InitializeCriticalSection
GetUserDefaultLCID
SetConsoleMode
FileTimeToSystemTime
SetFilePointer
LocalFileTimeToFileTime
GetStartupInfoA
GetCurrentDirectoryA
GetDriveTypeW
IsValidCodePage
UnlockFile
GetLastError
PeekConsoleInputA
CreateThread
SetCurrentDirectoryA
TlsGetValue
RtlUnwind
Beep
GetCommandLineA
CreateDirectoryA
IsBadWritePtr
GetFullPathNameW
CreatePipe
DeleteCriticalSection
GetACP
GetLocalTime
RemoveDirectoryW
GetFileInformationByHandle
GetFullPathNameA
FlushFileBuffers
GetCurrentProcess
SetEnvironmentVariableA
GetCurrentThread
IsBadCodePtr
WaitForSingleObject
DeleteFileA
SetLocalTime
FreeLibrary
TlsSetValue
SetFileAttributesW
GetModuleFileNameA
ReadFile

user32

MessageBoxA

Sections

.text
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

510580acfdad0796103df179e7c58b32

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 78KB - Virtual size: 77KB

.rdata Size: 33KB - Virtual size: 32KB

.rdata Size: 11KB - Virtual size: 67KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 78KB - Virtual size: 77KB

.rdata
Size: 33KB - Virtual size: 32KB

.rdata
Size: 11KB - Virtual size: 67KB

.rsrc
Size: 23KB - Virtual size: 23KB