b4990e18149b6f2bd76a8f2096b1b35a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b4990e18149b6f2bd76a8f2096b1b35a_JaffaCakes118
Size

850KB
MD5

b4990e18149b6f2bd76a8f2096b1b35a
SHA1

85ba1ae30e517e77e731d01f735b04c6b18b053f
SHA256

d45071e1c23b509e1adf59230b0533ebb25721cbcc8f17a5ff5a636ecb560b7f
SHA512

5ddb985026e997e6d18e5bc78311b723d1a2c198a245c3f970f99409e7dc41c22576c01f119f282f5ceb1745677c598429237a1a9a586f1c097163a160e5b25a
SSDEEP

12288:XBtls0LLFyAilAsq/TAC2PnE9bnodkt4w0CmDSrZHQ9n57xyNRbj9qIiHOl1:xt6ApIw/CPUoekp0u9d0vb1iuv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b4990e18149b6f2bd76a8f2096b1b35a_JaffaCakes118

Files

b4990e18149b6f2bd76a8f2096b1b35a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2a486f6a5873b95792195d458df2cfdc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
GetPrivateProfileStringA
GetDiskFreeSpaceA
FindFirstFileA
FindClose
GetModuleFileNameA
GetDriveTypeA
WinExec
MoveFileExA
GetShortPathNameA
lstrcatA
LocalAlloc
GetTempPathA
LocalFree
GetCurrentProcess
SetFileTime
LoadLibraryA
GetProcAddress
FreeLibrary
GetWindowsDirectoryA
GetSystemDirectoryA
lstrlenA
GetFullPathNameA
GlobalFree
GlobalAlloc
GetStringTypeW
GetStringTypeA
GetOEMCP
GetACP
GetCPInfo
LCMapStringW
LCMapStringA
WideCharToMultiByte
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
CreateDirectoryA
HeapCompact
HeapSize
TerminateProcess
ExitProcess
GetFileAttributesA
SetFileAttributesA
MoveFileA
DeleteFileA
HeapAlloc
HeapFree
GetLastError
SetCurrentDirectoryA
MultiByteToWideChar
UnhandledExceptionFilter
FreeEnvironmentStringsA
SetEnvironmentVariableA
WritePrivateProfileStringA
GlobalHandle
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStdHandle
GetFileType
SetHandleCount
SetFilePointer
CreateFileA
ReadFile
WriteFile
GetCurrentDirectoryA
CloseHandle
GlobalLock
GlobalUnlock
RtlUnwind

user32

DestroyWindow
TranslateMessage
GetMessageA
IsWindowVisible
DispatchMessageA
EndPaint
CreateDialogIndirectParamA
MessageBoxA
wsprintfA
SetWindowTextA
SetWindowPos
ShowWindow
IsDialogMessageA
GetDlgItem
ScreenToClient
GetWindowRect
SendDlgItemMessageA
EnableWindow
SetFocus
SendMessageA
SetDlgItemTextA
GetDlgItemTextA
KillTimer
BeginPaint
SetTimer
RegisterWindowMessageA
OemToCharA
GetParent
GetDC
ReleaseDC
SetWindowLongA
GetClientRect
FillRect
GetWindow
GetSysColor
CreateWindowExA
LoadIconA
LoadCursorA
RegisterClassA
FindWindowA
GetLastActivePopup
BringWindowToTop
GetSystemMetrics
AdjustWindowRectEx
UpdateWindow
IsIconic
RedrawWindow
PostQuitMessage
DefWindowProcA
PostMessageA
IsDlgButtonChecked
ExitWindowsEx
CheckDlgButton

gdi32

AddFontResourceA
ExtTextOutA
GetStockObject
CreateSolidBrush
DeleteObject
CreateFontIndirectA
GetObjectA
SetBkColor
CreatePalette
GetSystemPaletteEntries
GetDeviceCaps
StretchDIBits
RealizePalette
SelectPalette
IntersectClipRect
TextOutA
SetTextColor
SetBkMode
CreateDIBPatternBrush
SelectObject
DeleteDC
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap

comdlg32

GetSaveFileNameA

advapi32

LookupPrivilegeValueA
RegQueryValueA
RegOpenKeyA
OpenProcessToken
RegCloseKey
AdjustTokenPrivileges
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyA
RegSetValueExA

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
ShellExecuteA

ole32

CoCreateInstance
OleInitialize
OleUninitialize

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
VerFindFileA

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a486f6a5873b95792195d458df2cfdc

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

version

Sections

.text Size: 40KB - Virtual size: 39KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 40KB - Virtual size: 39KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 1KB