f7c2d0e9e0cf3a24629faac9b5fcd8ec_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f7c2d0e9e0cf3a24629faac9b5fcd8ec_JaffaCakes118
Size

435KB
MD5

f7c2d0e9e0cf3a24629faac9b5fcd8ec
SHA1

41e4ce929ae3fd0d4444582055e95b29573ce2c9
SHA256

6d4417f0fe4aac09967784f2bdb4567a159d466f91f07e473cbf7d205e956482
SHA512

aa8c61fe1840e8fd84c5b36df48aee43839c59e7b9745b80cc54b14045ba5aea77dc568421e63f046964730309f82149ecddd3e6e006be1d893da33e7e47146b
SSDEEP

12288:qB4dACdMQLzNRgjl/u92pK4JYfsDaNy11jkqpF0nd9z:q0ACWup2jhhDYfsDaNy1zed

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f7c2d0e9e0cf3a24629faac9b5fcd8ec_JaffaCakes118

Files

f7c2d0e9e0cf3a24629faac9b5fcd8ec_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2137c987adf18ba2cc187ce074eace33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteObject
SetBkMode
GetDeviceCaps
GetStockObject
BitBlt

user32

GetDlgItem
SetFocus
EnableWindow
GetParent
GetDC
FillRect
GetFocus
BeginPaint
CreateWindowExA
MessageBoxA
DrawTextA
GetDesktopWindow
PeekMessageA
GetWindow
ReleaseDC
GetMessageA
LoadStringA
GetSystemMetrics
DestroyWindow
DialogBoxParamA
EndDialog
InvalidateRect
SetWindowTextA
EndPaint
GetSysColor
ShowWindow
GetClientRect
ScreenToClient
SetWindowLongA
LoadCursorA
IsWindow
ClientToScreen
SetCursor
UpdateWindow
CallWindowProcA
DestroyMenu
SetForegroundWindow
IsWindowEnabled
MoveWindow
DispatchMessageA
EnableMenuItem
SendMessageA
TranslateMessage
GetWindowRect
MessageBeep
RegisterClassA
SetTimer
SystemParametersInfoA
DefWindowProcA
SetWindowPos
PostQuitMessage

advapi32

RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegDeleteKeyA

kernel32

GetCommandLineW
GetFileAttributesA
GetTimeZoneInformation
GetVersion
GetModuleFileNameA
FormatMessageW
HeapCreate
UnmapViewOfFile
GetCurrentProcessId
GetCurrentThreadId
TlsAlloc
CreateEventA
CreateFileW
GetStdHandle
GetFileSize
WaitForSingleObject
FindFirstFileW
SetFilePointer
GetPrivateProfileStringA
GlobalAlloc
GetModuleHandleW
GetTickCount
GetModuleFileNameW
MapViewOfFile
GetACP
LocalAlloc
LocalFree
GetCurrentProcess
GetFullPathNameA
HeapAlloc
UnhandledExceptionFilter
InterlockedIncrement
InterlockedExchange
InterlockedCompareExchange
GetProcessHeap
GetFileType
CreateThread
FormatMessageA
WriteFile
FindFirstFileA
GetEnvironmentVariableA
SizeofResource
CreateEventW
CreateFileA
GetCurrentThread
VirtualQuery
HeapSize
GetWindowsDirectoryA
GetOEMCP
ExitProcess
GetLastError
Sleep
FindNextFileA
FlushFileBuffers
lstrcpynA
WritePrivateProfileStringA
TerminateProcess
GetDiskFreeSpaceA
IsDebuggerPresent
EnterCriticalSection
GetCPInfo
SetLastError
SetStdHandle
ReadFile
HeapDestroy
SetConsoleCtrlHandler
WriteConsoleW
VirtualFree
DeleteCriticalSection
CreateProcessW
GetVersionExA
ReleaseMutex
GetSystemInfo
CreateDirectoryA
FreeEnvironmentStringsW
SetEndOfFile
HeapFree
RaiseException
GetStartupInfoA
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeLibrary
SetEvent
InitializeCriticalSection
SetEnvironmentVariableA
GetCommandLineA
DeleteFileW
QueryPerformanceCounter
VirtualProtect
GetProcAddress
LoadLibraryExA
FindClose
CloseHandle
GetStringTypeA
SetUnhandledExceptionFilter
FindNextFileW
TlsSetValue
TlsGetValue
DeleteFileA
GlobalUnlock
LeaveCriticalSection
LoadResource
FindResourceW
LoadLibraryW
GetModuleHandleA
TlsFree
MulDiv
MultiByteToWideChar
lstrlenW
LCMapStringW
lstrlenA
WriteConsoleA
GlobalLock
GlobalFree
HeapReAlloc
VirtualAlloc
LockResource
GetConsoleMode
LCMapStringA
GetLocaleInfoW
GetLocaleInfoA
CompareStringA
CompareStringW
lstrcmpiA
GetThreadLocale
WideCharToMultiByte
GetStringTypeW
InterlockedDecrement
FindResourceA
LoadLibraryA
SetHandleCount
GetConsoleOutputCP
GetSystemDirectoryA
SetErrorMode
GetDriveTypeA
GetConsoleCP
DuplicateHandle
FreeEnvironmentStringsA
GetEnvironmentStrings

ole32

CoUninitialize
CoInitialize
CoTaskMemFree

msvcrt

free

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 369KB - Virtual size: 369KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2137c987adf18ba2cc187ce074eace33

Headers

File Characteristics

Imports

gdi32

user32

advapi32

kernel32

ole32

msvcrt

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 369KB - Virtual size: 369KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 369KB - Virtual size: 369KB

.rsrc
Size: 2KB - Virtual size: 1KB