6ab78c5eaa47c6a47c942cf4d4e3fa2d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

6ab78c5eaa47c6a47c942cf4d4e3fa2d_JaffaCakes118
Size

1.9MB
MD5

6ab78c5eaa47c6a47c942cf4d4e3fa2d
SHA1

030fb5fdbba49767849a1bc0c1882e20dd1c7123
SHA256

b63cbd0c295d84e4336b8839da55153e12cbd58f1a79395f1477ac89b76277da
SHA512

9301909d0d9ad49ee71b3dac88bed5c5177a41f9f33074be9ae3991b220e27e619af20ba68c0a5d3870d03edaec266d6a8f9aeab3eddc663df5383a35850bca1
SSDEEP

24576:f7USvwC/a7tWe1sgEVoMBTLW0JZa/1BVWTIUM1lsB/CH:f7Fv5/DgAZKs43shQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6ab78c5eaa47c6a47c942cf4d4e3fa2d_JaffaCakes118

Files

6ab78c5eaa47c6a47c942cf4d4e3fa2d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ff415fda08400bcff91d9bbe540e25d6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowTextW
DefWindowProcW
CallWindowProcW
RegisterClassExW
UnpackDDElParam
IsDialogMessageW
DrawIconEx
CheckMenuRadioItem
GetTopWindow
GetClassWord
IsRectEmpty
CopyRect
FrameRect
ClientToScreen
AdjustWindowRect
GetKeyboardLayoutList
EnumPropsExW
GetPropW
GetDC
GetMenuItemInfoW
CreateMenu
GetMenu
LoadAcceleratorsW
GetKeyboardType
IsDlgButtonChecked
GetDlgItem
EndDialog

kernel32

LCMapStringW
HeapSize
HeapAlloc
GetStringTypeW
OutputDebugStringW
LoadLibraryExW
HeapFree
LeaveCriticalSection
GetCPInfo
GetOEMCP
FlushFileBuffers
IsValidCodePage
RtlUnwind
VirtualAlloc
VirtualFree
HeapReAlloc
GetEnvironmentStringsW
EnterCriticalSection
WaitForSingleObject
SetFilePointer
CloseHandle
GetSystemInfo
SystemTimeToFileTime
FindResourceExW
GetTempPathW
RemoveDirectoryW
CreateFileW
GetFileAttributesW
FindNextFileW
CommConfigDialogW
GetConsoleWindow
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
GetACP
SetLastError
IsDebuggerPresent
GetModuleHandleW
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
EncodePointer
GetLastError
WriteConsoleW
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree

advapi32

RegQueryInfoKeyW
RegDeleteValueW
RegDeleteKeyW
RegCloseKey
RegQueryValueExW

ole32

CLSIDFromProgID
PropVariantClear
CoGetMalloc

Sections

.text
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 514KB - Virtual size: 7.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.5os3f
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nalo
Size: 772KB - Virtual size: 772KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nm2nsa
Size: 185KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ff415fda08400bcff91d9bbe540e25d6

Headers

File Characteristics

Imports

user32

kernel32

advapi32

ole32

Sections

.text Size: 72KB - Virtual size: 71KB

.data Size: 514KB - Virtual size: 7.3MB

.idata Size: 3KB - Virtual size: 2KB

.xdata Size: 1024B - Virtual size: 724B

.5os3f Size: 315KB - Virtual size: 315KB

.nalo Size: 772KB - Virtual size: 772KB

.nm2nsa Size: 185KB - Virtual size: 184KB

.rsrc Size: 100KB - Virtual size: 99KB

.text
Size: 72KB - Virtual size: 71KB

.data
Size: 514KB - Virtual size: 7.3MB

.idata
Size: 3KB - Virtual size: 2KB

.xdata
Size: 1024B - Virtual size: 724B

.5os3f
Size: 315KB - Virtual size: 315KB

.nalo
Size: 772KB - Virtual size: 772KB

.nm2nsa
Size: 185KB - Virtual size: 184KB

.rsrc
Size: 100KB - Virtual size: 99KB