655a13e5ad90fb053a129e4990f5061f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

655a13e5ad90fb053a129e4990f5061f_JaffaCakes118
Size

381KB
MD5

655a13e5ad90fb053a129e4990f5061f
SHA1

022f91b3c30e3aa525724f2ee9b16343f7236f7b
SHA256

950071b6a72d39ba894c1d06a3b1fa55f5e818c87b948005ef1c5dac47eeba3a
SHA512

a31f23b3567a5c0d6341ab7097ee3f4a7cf8a172e084e833fec67d6b4b574b142b0d58cff83e6161bb541894c15afb43a29531be6667244865c568a5eb196529
SSDEEP

6144:GUPvYuBcJhC0x4TOYfsJE4jTCQmuEYWs6z/zzUjfbcHmOjovGxYjrpztpww3JPZq:PPvYuBKhC0HYfsmy5n/6z/HSfwG6SjrW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
655a13e5ad90fb053a129e4990f5061f_JaffaCakes118

Files

655a13e5ad90fb053a129e4990f5061f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4f2bc1bc318ccef70f77338a8f1f4abc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_SYSTEM
IMAGE_FILE_UP_SYSTEM_ONLY

Imports

kernel32

CreateFileW
SetStdHandle
RaiseException
GetConsoleMode
GetConsoleCP
SetFilePointer
GetStringTypeW
MultiByteToWideChar
LCMapStringW
RtlUnwind
LoadLibraryW
CloseHandle
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
IsValidCodePage
HeapAlloc
GetOEMCP
GetACP
HeapFree
HeapQueryInformation
HeapSize
HeapReAlloc
WriteFile
HeapCreate
SetLastError
TlsFree
TlsSetValue
lstrcpyA
LocalFree
GetModuleHandleA
LocalAlloc
LoadLibraryA
GetProcessHeaps
GetProcAddress
GetLastError
SetConsoleTitleA
LocalReAlloc
GetVolumeInformationA
TlsGetValue
TlsAlloc
EncodePointer
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetCPInfo
FreeLibrary
GetModuleFileNameA
FlushFileBuffers
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapValidate
IsBadReadPtr
GetModuleFileNameW
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
InterlockedIncrement
InterlockedDecrement
DecodePointer
GetModuleHandleW
ExitProcess

user32

SetWindowTextA
FindWindowA
SetMenuItemInfoA
GetClientRect
DestroyWindow
GetSystemMenu
ScreenToClient
GetWindowRect
GetMenuItemID
GetSubMenu
DeleteMenu
DdeInitializeA
wsprintfA
FindWindowExA
GetMenuStringA
SendMessageA
GetDC
GetMenu
SetRect
SetWindowLongA
ReleaseDC
GetMenuState
GetDlgItem
EndDialog
GetCursorPos
GetMenuItemInfoA
GetMenuItemCount

gdi32

DeleteDC
CreateDIBSection
CreateFontIndirectW
GetDeviceCaps
GdiFlush
SelectObject
CreateCompatibleDC
EnumFontsA

shell32

ShellExecuteA

ole32

OleCreate
OleSetContainedObject

winscard

SCardGetAttrib

shlwapi

PathCompactPathA

comctl32

ord16

uxtheme

GetThemeSysFont

Exports

Exports

Ip

Sections

.text
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 268KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gave
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 908B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4f2bc1bc318ccef70f77338a8f1f4abc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

winscard

shlwapi

comctl32

uxtheme

Exports

Exports

Sections

.text Size: 99KB - Virtual size: 99KB

.rdata Size: 268KB - Virtual size: 268KB

.data Size: 5KB - Virtual size: 12KB

.gave Size: 6KB - Virtual size: 5KB

.rsrc Size: 1024B - Virtual size: 908B

.text
Size: 99KB - Virtual size: 99KB

.rdata
Size: 268KB - Virtual size: 268KB

.data
Size: 5KB - Virtual size: 12KB

.gave
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 1024B - Virtual size: 908B