40033eb1ba8ab746a2024afba585ccf6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

40033eb1ba8ab746a2024afba585ccf6_JaffaCakes118
Size

318KB
MD5

40033eb1ba8ab746a2024afba585ccf6
SHA1

0057350dc6cef9f8f7f94188d8120dc91974f7cf
SHA256

89c7c8a795578ef239fef68fe949c29f50f7f40833f6eb87eabf66cae290eab6
SHA512

ed354ba15a2e293d9fc2e38d8ad41c1412737bde03951d1574d8c2025f71ca0f82198bfe13ecef9de261c90a2887642819e9e33b8c9b2faab8b06f4fb8a8c830
SSDEEP

6144:av/MN1XXn2KAyDEki44rHgq93kHVe+QQgTMIRROgrluEoKX:G0N1XXn2KAEETNIHVe+QfJRHrjJX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40033eb1ba8ab746a2024afba585ccf6_JaffaCakes118

Files

40033eb1ba8ab746a2024afba585ccf6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

900a481f8498ecbac4c6600deefd8001

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleW
CloseHandle
ReadFile
FlushFileBuffers
GetConsoleMode
GetConsoleCP
IsProcessorFeaturePresent
HeapReAlloc
SetStdHandle
RtlUnwind
HeapSize
LCMapStringW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
WideCharToMultiByte
LocalFree
GetModuleFileNameA
MultiByteToWideChar
GetStringTypeW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
Sleep
SetFilePointer
OpenProcess
SetHandleCount
GetModuleFileNameW
WriteFile
GetLocaleInfoW
LoadLibraryW
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleA
LocalAlloc
GetLastError
GetStdHandle
FreeEnvironmentStringsW
HeapCreate
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
HeapFree
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetLogicalDriveStringsW
QueryDosDeviceA
HeapAlloc
GetFileType
RaiseException
GetStartupInfoW
HeapSetInformation
GetCommandLineA
InterlockedIncrement
InterlockedDecrement
DecodePointer
ExitProcess
GetModuleHandleW
GetProcAddress
CreateFileW

user32

DialogBoxParamA
LoadCursorA
GetWindowThreadProcessId
RegisterClassA
UpdateWindow
LoadImageA
SetWindowTextA
DispatchMessageA
GetWindow
EndPaint
ClientToScreen
SendMessageA
GetWindowRect
FillRect
SetCapture
LoadBitmapA
LoadIconA
DlgDirSelectExA
GetClientRect
CreateMenu
SetFocus
GetMessageA
BeginPaint
DlgDirListA
GetDC
TranslateMessage
SetWindowLongA
MessageBoxA
InvalidateRect
GetWindowLongA
CreateWindowExA
IsWindowUnicode
GetDlgItem
DefWindowProcA
GetSysColor
LoadAcceleratorsA
SetLayeredWindowAttributes
ShowWindow
CreatePopupMenu

gdi32

BitBlt
SetPixel
DeleteObject
SelectObject
Rectangle
GetObjectA
CreateSolidBrush
TextOutA
BeginPath

ole32

CoInitializeEx
CoInitializeSecurity
CoCreateInstance

psapi

EnumPageFilesA
GetProcessImageFileNameA

mpr

WNetOpenEnumA
WNetEnumResourceA
WNetCloseEnum

winmm

mmioClose
mmioCreateChunk
mmioOpenA
mmioWrite

rpcrt4

RpcMgmtSetComTimeout
RpcBindingFree
RpcBindingFromStringBindingA
RpcStringFreeA
RpcStringBindingComposeA
RpcBindingSetObject

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

tapi32

lineCreateAgentA
lineConfigDialogA

Sections

.text
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 172KB - Virtual size: 408KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

900a481f8498ecbac4c6600deefd8001

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

psapi

mpr

winmm

rpcrt4

setupapi

tapi32

Sections

.text Size: 118KB - Virtual size: 118KB

.rdata Size: 21KB - Virtual size: 21KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 172KB - Virtual size: 408KB

.text
Size: 118KB - Virtual size: 118KB

.rdata
Size: 21KB - Virtual size: 21KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 172KB - Virtual size: 408KB