JaffaCakes118_31ff0dca7f3890a232f51da81b5b289a

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_31ff0dca7f3890a232f51da81b5b289a
Size

259KB
MD5

31ff0dca7f3890a232f51da81b5b289a
SHA1

8001c11a132a49747601cab260f6da4e7811c201
SHA256

a45e9bafe1bd4f0802c36cff51122c1e212ad2b8df9d7e7080c752875bca5c02
SHA512

1364e01b9fd6c57c978aef373a48c87ed12657450dd8e8d685a96eb988b611f4add1ff0dfcbc1e98ee531646a8861b161d18fcf8ffcf48a41dedee7519c2e53e
SSDEEP

6144:szQEmjucybqwyD1cSdo//kGAF1p33WZzJN3NVSfQK3:Jj7yb+1cYo//OFr33izb32fQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_31ff0dca7f3890a232f51da81b5b289a

Files

JaffaCakes118_31ff0dca7f3890a232f51da81b5b289a
.exe windows:4 windows x86 arch:x86

730203c8e27b93aea5cabef37410d7d5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UnregisterClassA
CharLowerBuffA

kernel32

GetCurrentThreadId
LockResource
HeapDestroy
HeapReAlloc
GetProcessHeap
WideCharToMultiByte
SetUnhandledExceptionFilter
CreateDirectoryA
LoadResource
GetACP
FindResourceExA
HeapSize
FindResourceA
UnhandledExceptionFilter
lstrlenW
DeleteCriticalSection
RaiseException
GetSystemTimeAsFileTime
lstrlenA
HeapFree
IsDebuggerPresent
HeapAlloc
EnterCriticalSection
GetThreadLocale
LeaveCriticalSection
SizeofResource
HeapCreate
VirtualAllocEx

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

query

BindIFilterFromStream
LoadTextFilter
DllCanUnloadNow
CollectFILTERPerformanceData

console

CPlApplet

Sections

.qZcd
Size: 3KB - Virtual size: 27KB

IMAGE_SCN_MEM_READ

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vcirnQ
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.akxjOT
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jJyA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bmldg
Size: 1024B - Virtual size: 663B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wRxQVY
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 206KB - Virtual size: 206KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.aInCoOF
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.oByYO
Size: 512B - Virtual size: 245B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xqaJEFE
Size: 1024B - Virtual size: 938B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MwIGPj
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.WfhQzB
Size: 1024B - Virtual size: 934B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

730203c8e27b93aea5cabef37410d7d5

Headers

File Characteristics

Imports

user32

kernel32

advapi32

query

console

Sections

.qZcd Size: 3KB - Virtual size: 27KB

.text Size: 17KB - Virtual size: 16KB

.vcirnQ Size: 3KB - Virtual size: 2KB

.akxjOT Size: 2KB - Virtual size: 1KB

.jJyA Size: 1KB - Virtual size: 1KB

.bmldg Size: 1024B - Virtual size: 663B

.wRxQVY Size: 2KB - Virtual size: 2KB

.data Size: 9KB - Virtual size: 35KB

.rdata Size: 206KB - Virtual size: 206KB

.aInCoOF Size: 3KB - Virtual size: 2KB

.oByYO Size: 512B - Virtual size: 245B

.rsrc Size: 5KB - Virtual size: 5KB

.xqaJEFE Size: 1024B - Virtual size: 938B

.MwIGPj Size: 1KB - Virtual size: 1KB

.WfhQzB Size: 1024B - Virtual size: 934B

.qZcd
Size: 3KB - Virtual size: 27KB

.text
Size: 17KB - Virtual size: 16KB

.vcirnQ
Size: 3KB - Virtual size: 2KB

.akxjOT
Size: 2KB - Virtual size: 1KB

.jJyA
Size: 1KB - Virtual size: 1KB

.bmldg
Size: 1024B - Virtual size: 663B

.wRxQVY
Size: 2KB - Virtual size: 2KB

.data
Size: 9KB - Virtual size: 35KB

.rdata
Size: 206KB - Virtual size: 206KB

.aInCoOF
Size: 3KB - Virtual size: 2KB

.oByYO
Size: 512B - Virtual size: 245B

.rsrc
Size: 5KB - Virtual size: 5KB

.xqaJEFE
Size: 1024B - Virtual size: 938B

.MwIGPj
Size: 1KB - Virtual size: 1KB

.WfhQzB
Size: 1024B - Virtual size: 934B