fbe8002dec98f352a566772f60376b23_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fbe8002dec98f352a566772f60376b23_JaffaCakes118
Size

203KB
MD5

fbe8002dec98f352a566772f60376b23
SHA1

cff085885780830f068bd581f309db017f2a7a52
SHA256

b0564e8fe29cb34b779014333c7e0a8a5ada29c0d50a3386330dd8e6afca893e
SHA512

bff7bfe1e1c3f4383083347fe2ad1d63687be0356ff0c1ec4a69aa23c12c61df14f300aaf4ce0c6057dd9d3015854c746ad55d50d0095bdc75c1995bbeab867e
SSDEEP

3072:pjpWXaKyNCj4LXSSJaJOP1H2rOBUJXwqB3SkkZTctWvPxBoK:aX1o2jJOP+OYwqAt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbe8002dec98f352a566772f60376b23_JaffaCakes118

Files

fbe8002dec98f352a566772f60376b23_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4d06f8303e6b226d2152a1660a8f98be

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
rand
wcschr
log
malloc
strlen
pow

ole32

CoCreateGuid
GetHGlobalFromStream
CoRevokeClassObject

gdi32

GetCurrentPositionEx
GetClipBox
GetDIBits
GetDCOrgEx
GetDIBColorTable

kernel32

GetProcAddress
VirtualAllocEx
GlobalAlloc
VirtualQuery
MulDiv
ExitThread
GetCommandLineW
WriteFile
LocalAlloc
lstrcpynA
GetVersionExA
VirtualAlloc
MoveFileA
lstrcmpA
LoadLibraryA
LocalReAlloc
LocalFree
WideCharToMultiByte
lstrcatA
ExitProcess
lstrcpyA
HeapDestroy
WaitForSingleObject
GetCommandLineA
GetModuleHandleA
lstrcmpiA
SizeofResource
GetOEMCP
LoadLibraryExA
VirtualFree
MoveFileExA
lstrlenA
IsBadReadPtr

shlwapi

SHSetValueA
SHDeleteValueA
PathGetCharTypeA
PathIsDirectoryA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerInstallFileA

comdlg32

GetFileTitleA
ChooseColorA
GetSaveFileNameA

advapi32

RegQueryInfoKeyA
RegQueryValueExA
RegEnumKeyA

shell32

SHGetSpecialFolderLocation
DragQueryFileA
SHGetDiskFreeSpaceA
SHGetFileInfoA

comctl32

ImageList_Read
ImageList_DrawEx
ImageList_Create
ImageList_Draw
ImageList_Remove
ImageList_Add
ImageList_Destroy
ImageList_Write
ImageList_DragShowNolock

user32

GetWindowTextA
GetTopWindow
GetWindowDC
GetWindow
KillTimer
GetWindowLongA
GetSubMenu
GetWindowPlacement
InsertMenuA
GetWindowThreadProcessId
GetWindowRect
IsWindowVisible
GetSysColor
IsChild
IsIconic
IsWindowEnabled
IsZoomed
InvalidateRect
InsertMenuItemA
IsWindow
IsDialogMessageW
GetSystemMenu
GetScrollRange
IntersectRect
InflateRect
IsWindowUnicode
IsRectEmpty
GetWindowLongW
IsDialogMessageA
GetSysColorBrush

Sections

.text
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 773B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc8
Size: 1024B - Virtual size: 1022B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc2
Size: 1024B - Virtual size: 525B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc6
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc9
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc5
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d06f8303e6b226d2152a1660a8f98be

Headers

File Characteristics

Imports

msvcrt

ole32

gdi32

kernel32

shlwapi

version

comdlg32

advapi32

shell32

comctl32

user32

Sections

.text Size: 69KB - Virtual size: 68KB

DATA Size: 1024B - Virtual size: 773B

.rsrc8 Size: 1024B - Virtual size: 1022B

.rsrc2 Size: 1024B - Virtual size: 525B

.rsrc6 Size: 1KB - Virtual size: 1KB

.rsrc9 Size: 124KB - Virtual size: 123KB

.rsrc5 Size: 4KB - Virtual size: 3KB

.rsrc Size: 1024B - Virtual size: 976B

.text
Size: 69KB - Virtual size: 68KB

DATA
Size: 1024B - Virtual size: 773B

.rsrc8
Size: 1024B - Virtual size: 1022B

.rsrc2
Size: 1024B - Virtual size: 525B

.rsrc6
Size: 1KB - Virtual size: 1KB

.rsrc9
Size: 124KB - Virtual size: 123KB

.rsrc5
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 1024B - Virtual size: 976B