6d1ad1cf2773853651a3042647d76397_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

6d1ad1cf2773853651a3042647d76397_JaffaCakes118
Size

184KB
MD5

6d1ad1cf2773853651a3042647d76397
SHA1

c9fac91a1abe63239aa5f2fdac1f7949ec81ef10
SHA256

e28f61d45a3e4d5862cdc09faca5309efa2b13fb5161df826bf266bc72dc2b4c
SHA512

df391603c334a50f733440c9f3554e9d34a30e2523b4f0151c6386e75147adda5d09dee324e16f28e1a624566ddb8e70e5118a4b556febd7eeb324ad30c19566
SSDEEP

1536:/qZcWA7LVxwDtK/Rz0zCTWFW8yc+ltsvp9FtxBza5STdYPk/XCfG6Euo52tEtFCb:C3SJWhret+FtLzaUtyfGyvtuSZOg4+C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
6d1ad1cf2773853651a3042647d76397_JaffaCakes118

Files

6d1ad1cf2773853651a3042647d76397_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8e1913720f615c57c5285de5a93931c3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ScreenToClient
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
PostQuitMessage
GetWindowRect
EnableMenuItem
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
ReleaseDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndDialog
RegisterClassA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
ExitWindowsEx
GetDC
CreateDialogParamA
SetTimer
GetDlgItem
SetWindowLongA
SetForegroundWindow
LoadImageA
IsWindow
SendMessageTimeoutA
FindWindowExA
OpenClipboard
TrackPopupMenu
AppendMenuA
EndPaint
DestroyWindow
wsprintfA
ShowWindow
SetWindowTextA

kernel32

GetProcessHeap
CreateFileA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
CloseHandle
HeapSize
SetFilePointer
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LoadLibraryA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
RtlUnwind
Sleep
InitializeCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
GetModuleFileNameA
GetStdHandle
WriteFile
ExitProcess
GetCurrentThreadId
SetLastError
TlsSetValue
TlsAlloc
TlsGetValue
GetProcAddress
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
VirtualAlloc
VirtualFree
HeapCreate
TlsFree
FreeEnvironmentStringsA
GetModuleHandleA
GetLastError
HeapReAlloc
HeapAlloc
GetCommandLineA
HeapFree
GetVersionExA
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapDestroy

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e1913720f615c57c5285de5a93931c3

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 96KB - Virtual size: 153KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 96KB - Virtual size: 153KB

.rsrc
Size: 20KB - Virtual size: 19KB