66525d5a0017e2a99f720fe0b2c963bd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

66525d5a0017e2a99f720fe0b2c963bd_JaffaCakes118
Size

355KB
MD5

66525d5a0017e2a99f720fe0b2c963bd
SHA1

9c072aee6bc2e0b34449fd66e8e91d55d5890dd3
SHA256

42ba15d53ff630dcc3d4a55a5bfdd63a361ad66f02196cbe481d5b3c564e8d25
SHA512

2a31fffd54d655346a2ebfc037faff5af274cb3f90740e9f228cfe47a4f5d793ef0fe19b15d867137998b4cbcc785ac7aeb7b569901fd384615b7641238e0d9a
SSDEEP

6144:Askh+/qGiGirUz5KIkBvR+V28AqbhHskAXpW2pgJFZ3IcWkO/Txy:wheDFPbkRwg8AtIqVbU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66525d5a0017e2a99f720fe0b2c963bd_JaffaCakes118

Files

66525d5a0017e2a99f720fe0b2c963bd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

258c6749f129dfdba29ded51b327c851

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

shell32

ShellExecuteA
ShellExecuteExA

kernel32

GetSystemTime
GetSystemTimeAsFileTime
FileTimeToSystemTime
GetCurrentThreadId
FileTimeToLocalFileTime
SystemTimeToFileTime
ReadConsoleOutputAttribute
HeapReAlloc
WriteConsoleOutputCharacterA
MoveFileA
GetVersion
GetEnvironmentVariableA
CloseHandle
AllocConsole
SetLastError
GetDiskFreeSpaceA
GlobalMemoryStatus
LocalFree
SetFileAttributesA
SetConsoleCursorInfo
WriteConsoleOutputA
FindFirstFileA
RtlUnwind
GetFileType
ReadConsoleOutputA
FindNextFileA
GetCommandLineA
SearchPathA
HeapSize
GetConsoleScreenBufferInfo
PeekConsoleInputA
DosDateTimeToFileTime
GetTimeZoneInformation
FillConsoleOutputAttribute
FreeConsole
GetLastError
ReadFile
lstrlenW
FileTimeToDosDateTime
LCMapStringA
GetLocalTime
DeviceIoControl
DeleteFileA
QueryPerformanceCounter
LoadLibraryA
GetModuleHandleA
SetEnvironmentVariableA
GetEnvironmentStringsA
GetExitCodeProcess
GetVolumeInformationA
LocalAlloc
SetFilePointer
GetFileTime
CreateFileA
SetConsoleWindowInfo
CreateProcessA
VirtualFree
ExitProcess
HeapAlloc
WriteFile
SetConsoleCursorPosition
Sleep
FillConsoleOutputCharacterA
GetCurrentThread
GetStdHandle
FindClose
GetDriveTypeA
SetCurrentDirectoryA
GetCurrentProcess
ReleaseSemaphore
SetConsoleScreenBufferSize
GetModuleFileNameA
ScrollConsoleScreenBufferA
SetHandleCount
GetProcAddress
GetFileInformationByHandle
RemoveDirectoryA
GetCurrentProcessId
HeapFree
GetConsoleCursorInfo
ReadConsoleInputA
HeapDestroy
SetEndOfFile
SetConsoleCtrlHandler
FlushFileBuffers
SetStdHandle
GetCurrentDirectoryA
CreateDirectoryA
DisableThreadLibraryCalls
GetStartupInfoA
LocalFileTimeToFileTime
HeapCreate

ntdll

RtlInitOutOfProcessMemoryStream
RtlxAnsiStringToUnicodeSize
strcmp
DbgPrint
_aulldvrm

msvcrt

free
malloc

gdi32

CombineRgn
PolyPolyline

advapi32

RegCreateKeyA
RegOpenKeyExA
RegQueryValueExW
RegCloseKey
RegSetValueExA
RegOpenKeyExW
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
RegEnumKeyExW
RegQueryValueExA
RegOpenCurrentUser

user32

SetTimer
ShowWindow
ShowCursor
GetKeyState
OemToCharBuffA
MessageBeep
DispatchMessageA
LoadBitmapA
DestroyWindow
GetDlgItemTextA
DdeSetQualityOfService
EnableWindow
LoadIconA
EndDialog
DialogBoxParamA
SendDlgItemMessageA
CharToOemBuffA
SetRectEmpty
wvsprintfA
SetFocus
PeekMessageA
LoadCursorA
TranslateMessage
KillTimer
MessageBoxA
GetWindowTextA
SetCursor
GetDlgItem

Sections

.text
Size: 74KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 54B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

258c6749f129dfdba29ded51b327c851

Headers

File Characteristics

Imports

shell32

kernel32

ntdll

msvcrt

gdi32

advapi32

user32

Sections

.text Size: 74KB - Virtual size: 76KB

.data Size: 135KB - Virtual size: 135KB

.rdata Size: 127KB - Virtual size: 126KB

.bss Size: - Virtual size: 12KB

.idata Size: 4KB - Virtual size: 3KB

.CRT Size: 512B - Virtual size: 54B

.tls Size: 512B - Virtual size: 32B

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 74KB - Virtual size: 76KB

.data
Size: 135KB - Virtual size: 135KB

.rdata
Size: 127KB - Virtual size: 126KB

.bss
Size: - Virtual size: 12KB

.idata
Size: 4KB - Virtual size: 3KB

.CRT
Size: 512B - Virtual size: 54B

.tls
Size: 512B - Virtual size: 32B

.rsrc
Size: 11KB - Virtual size: 11KB