a0b1232f9ff460e317839ad88d220583_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a0b1232f9ff460e317839ad88d220583_JaffaCakes118
Size

2.0MB
MD5

a0b1232f9ff460e317839ad88d220583
SHA1

a380b7cba0d3c48c029dbba077d7e489f0cb5046
SHA256

04a8771b29387286979cc03f73663daaaadb7c227e7ec6403217281cf0a12c5d
SHA512

6c327205cc09c5c741aeff1a82cb75db0419d529bf2b434630bbdc8e4108188038843e5014f67944f5295d37ee7cc9b0c6596cd0138f6d78cce0c35c9f914fac
SSDEEP

24576:fQVhdWAKCOwbpFgTwi6PwD0kTMRdbFctVBy9LB3dcO9nXz7Y:fQVhsHCOwNGTwZ4DRATbijBweuXz7Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a0b1232f9ff460e317839ad88d220583_JaffaCakes118

Files

a0b1232f9ff460e317839ad88d220583_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5e83d8a5dd45c84b984b8c138345d1c3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

OpenSCManagerW

mprapi

MprConfigServerConnect

mpr

WNetGetConnectionW
WNetGetUniversalNameW

kernel32

CloseHandle
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GlobalLock
LocalAlloc
VirtualAlloc
HeapFree
HeapSize
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetLastError
EnterCriticalSection
UnmapViewOfFile
lstrlenW
CreateFileMappingW
CreateProcessW
FindResourceExW
GlobalFindAtomW
GetFullPathNameW
ReplaceFileW
GetLogicalProcessorInformation
IsValidCodePage
GetCPInfo
MultiByteToWideChar
GetThreadLocale
GetConsoleWindow
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapReAlloc
HeapAlloc
GetStringTypeW
OutputDebugStringW
RtlUnwind
LoadLibraryExW
LeaveCriticalSection
GetOEMCP
GetACP
IsDebuggerPresent
IsProcessorFeaturePresent
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCommandLineW
RaiseException
EncodePointer
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
CreateFileW

user32

GetWindowTextW
SetScrollRange
GetDCEx
UpdateWindow
MenuItemFromPoint
SetMenuDefaultItem
DeleteMenu
GetMenuItemCount
CreatePopupMenu
CountClipboardFormats
RegisterClipboardFormatW
IsDlgButtonChecked
GetWindowContextHelpId
SetDlgItemInt
EndDialog
DialogBoxParamW
CreateDialogParamW
IsZoomed
IsIconic
MoveWindow
FlashWindow
RegisterClassExW
PostThreadMessageW
SendMessageTimeoutW
RegisterWindowMessageW
ActivateKeyboardLayout
GetSysColor
InflateRect
IntersectRect
LoadBitmapW
CheckRadioButton

Sections

.text
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 404KB - Virtual size: 6.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wea2o
Size: 816KB - Virtual size: 816KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.9tlt
Size: 330KB - Virtual size: 329KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.3969gh
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e83d8a5dd45c84b984b8c138345d1c3

Headers

File Characteristics

Imports

advapi32

mprapi

mpr

kernel32

user32

Sections

.text Size: 106KB - Virtual size: 105KB

.data Size: 404KB - Virtual size: 6.6MB

.idata Size: 3KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.wea2o Size: 816KB - Virtual size: 816KB

.9tlt Size: 330KB - Virtual size: 329KB

.3969gh Size: 252KB - Virtual size: 251KB

.rsrc Size: 99KB - Virtual size: 99KB

.text
Size: 106KB - Virtual size: 105KB

.data
Size: 404KB - Virtual size: 6.6MB

.idata
Size: 3KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.wea2o
Size: 816KB - Virtual size: 816KB

.9tlt
Size: 330KB - Virtual size: 329KB

.3969gh
Size: 252KB - Virtual size: 251KB

.rsrc
Size: 99KB - Virtual size: 99KB