129ba487da065ef14c609bc533fe906b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

129ba487da065ef14c609bc533fe906b_JaffaCakes118
Size

359KB
MD5

129ba487da065ef14c609bc533fe906b
SHA1

7f60c9419356ba46e134821b43361dd64e9175c6
SHA256

d4165866be3c391c105ad37f159754c67df29548328c3384e6d28eac752ebb30
SHA512

883f2c0af7c5cefeed37de8e8f7e268ebc0fd98c6ad099493a6e04e9ddee8dc1601115ae8b61ace24937be88139f247dbcbd3f37d94e0b004b93266d9a42f7df
SSDEEP

6144:AVwrcMnYrT3dPpkFAPHXKcrzpz4pH1y8p39ijXuCN1/sIx9:mwrctrx4Af6wp4pHQ8J9ij+CN7D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
129ba487da065ef14c609bc533fe906b_JaffaCakes118

Files

129ba487da065ef14c609bc533fe906b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e7f4ee924b04d2232255906bbaf148e0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

SendDlgItemMessageA
TranslateMessage
DdeUninitialize
CharToOemBuffA
SetFocus
SetCursor
GetDlgItem
ShowWindow
LoadBitmapA
KillTimer
SetTimer
LoadIconA
EnableWindow
ShowCursor
GetWindowTextA
OemToCharBuffA
SetMenuItemBitmaps
DispatchMessageA
EndDialog
PeekMessageA
DialogBoxParamA
MessageBoxA
SetParent
GetDlgItemTextA
wvsprintfA
DestroyWindow
GetKeyState
LoadCursorA
MessageBeep

kernel32

GetCommandLineA
GetConsoleScreenBufferInfo
GetDriveTypeA
FindFirstFileA
GetSystemTimeAsFileTime
GetFileType
GetLocalTime
FlushFileBuffers
GetStartupInfoA
QueryPerformanceCounter
FillConsoleOutputAttribute
HeapDestroy
VirtualFree
SetLastError
MoveFileA
GetStdHandle
SetHandleCount
SetCurrentDirectoryA
DeleteFileA
LocalFileTimeToFileTime
FindClose
GetCurrentProcessId
HeapSize
SetConsoleScreenBufferSize
PeekConsoleInputA
ScrollConsoleScreenBufferA
GetCurrentThread
ExitProcess
SetStdHandle
FileTimeToSystemTime
Sleep
FileTimeToDosDateTime
ReadConsoleOutputAttribute
lstrlenW
GetFileInformationByHandle
GetDiskFreeSpaceA
SetFilePointer
GetLastError
HeapReAlloc
HeapFree
GlobalMemoryStatus
GetCurrentThreadId
LoadLibraryA
GetProcAddress
DisableThreadLibraryCalls
SystemTimeToFileTime
FindNextFileA
DosDateTimeToFileTime
SetEnvironmentVariableA
FileTimeToLocalFileTime
WriteFile
LCMapStringA
SetConsoleCursorInfo
GetExitCodeProcess
GetModuleHandleA
SetConsoleCtrlHandler
ReleaseSemaphore
SetFileAttributesA
GetEnvironmentVariableA
WriteConsoleOutputCharacterA
SearchPathA
GetSystemTime
FreeConsole
GetConsoleCursorInfo
GetModuleFileNameA
CloseHandle
GetVersion
AllocConsole
LocalFree
ReadConsoleInputA
CreateDirectoryA
FillConsoleOutputCharacterA
GetFileTime
SetConsoleCursorPosition
HeapCreate
GetCurrentProcess
HeapAlloc
SetEndOfFile
LocalAlloc
DeviceIoControl
RemoveDirectoryA
GetCurrentDirectoryA
GetEnvironmentStringsA
ReadConsoleOutputA
SetConsoleWindowInfo
WriteConsoleOutputA
ReadFile
GetTimeZoneInformation
CreateFileA
GetVolumeInformationA
CreateProcessA

shell32

ShellExecuteExA
ShellExecuteA

advapi32

RegSetValueExA
RegCreateKeyA
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegOpenCurrentUser
RegEnumKeyExW
RegSetValueExW
RegCreateKeyExW
RegDeleteKeyW
RegOpenKeyExA
RegQueryValueExA

msvcrt

_safe_fprem1
_wgetcwd
malloc
memset
free

gdi32

CombineRgn
CreateEllipticRgnIndirect

ntdll

DbgPrint
ZwPlugPlayControl

Sections

.text
Size: 78KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 142KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 54B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e7f4ee924b04d2232255906bbaf148e0

Headers

File Characteristics

Imports

user32

kernel32

shell32

advapi32

msvcrt

gdi32

ntdll

Sections

.text Size: 78KB - Virtual size: 80KB

.data Size: 142KB - Virtual size: 142KB

.rdata Size: 120KB - Virtual size: 119KB

.bss Size: - Virtual size: 12KB

.idata Size: 4KB - Virtual size: 3KB

.CRT Size: 512B - Virtual size: 54B

.tls Size: 512B - Virtual size: 32B

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 78KB - Virtual size: 80KB

.data
Size: 142KB - Virtual size: 142KB

.rdata
Size: 120KB - Virtual size: 119KB

.bss
Size: - Virtual size: 12KB

.idata
Size: 4KB - Virtual size: 3KB

.CRT
Size: 512B - Virtual size: 54B

.tls
Size: 512B - Virtual size: 32B

.rsrc
Size: 11KB - Virtual size: 11KB