b6a3dcb3c107cffd8287f73b64021a8b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b6a3dcb3c107cffd8287f73b64021a8b_JaffaCakes118
Size

2.3MB
MD5

b6a3dcb3c107cffd8287f73b64021a8b
SHA1

7a588df14c71292fe44c34d68b4739b3630215fe
SHA256

8fb57c8a65f007172d05d20f927506fecb8b38fa189eb7e6a60cb95ab2d03e1d
SHA512

165c932a17bc0ec3e020ffd28f4b1b753e11a15565a0120791d5a1ffddf39d5d8f28986e04daf8f79b0ad6cae2b6381398a2b0d54aa6a038c4e42c98cb56aed8
SSDEEP

24576:gdHJ/OG1/7oUWdi6Pt6GrN0N4s3fWx4WwPrrnzJzh+p:gjvWHrKB3SU1zkp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6a3dcb3c107cffd8287f73b64021a8b_JaffaCakes118

Files

b6a3dcb3c107cffd8287f73b64021a8b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a91750e18cfa4a57409e477b9ef84476

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

uxtheme

GetCurrentThemeName
EnableThemeDialogTexture
GetWindowTheme
GetThemeColor
IsThemeBackgroundPartiallyTransparent
DrawThemeText
CloseThemeData

user32

DdeKeepStringHandle
DefRawInputProc
LoadStringW
SetRectEmpty
GetClientRect
DeleteMenu
GetMenuItemID
DestroyMenu
SetFocus
GetDialogBaseUnits
IsZoomed
DefWindowProcW
PostMessageW
DrawEdge

kernel32

GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapSize
HeapReAlloc
HeapAlloc
GetStringTypeW
OutputDebugStringW
RtlUnwind
LoadLibraryExW
GetVersion
SetStdHandle
GlobalFree
LocalAlloc
LocalLock
VirtualAlloc
GetCurrentProcessId
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
SetupComm
EscapeCommFunction
PurgeComm
GetTimeZoneInformation
CreateMutexW
CreateFileMappingW
OpenFileMappingW
CreateProcessW
GlobalAddAtomW
GetFullPathNameW
FindFirstFileW
SetFilePointerEx
WriteConsoleW
CloseHandle
GlobalAlloc
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
CreateFileW
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
IsDebuggerPresent
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
EnterCriticalSection
LeaveCriticalSection
HeapFree

advapi32

RegQueryValueExW
RegOpenKeyExW
RegEnumValueW
RegSetValueExW

Sections

.text
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 326KB - Virtual size: 7.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.oegheh
Size: 359KB - Virtual size: 358KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.4o68a
Size: 519KB - Virtual size: 519KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isos
Size: 638KB - Virtual size: 638KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.a50tw5
Size: 254KB - Virtual size: 253KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a91750e18cfa4a57409e477b9ef84476

Headers

File Characteristics

Imports

uxtheme

user32

kernel32

advapi32

Sections

.text Size: 128KB - Virtual size: 128KB

.data Size: 326KB - Virtual size: 7.5MB

.idata Size: 3KB - Virtual size: 2KB

.xdata Size: 1024B - Virtual size: 724B

.oegheh Size: 359KB - Virtual size: 358KB

.4o68a Size: 519KB - Virtual size: 519KB

.isos Size: 638KB - Virtual size: 638KB

.a50tw5 Size: 254KB - Virtual size: 253KB

.rsrc Size: 100KB - Virtual size: 99KB

.text
Size: 128KB - Virtual size: 128KB

.data
Size: 326KB - Virtual size: 7.5MB

.idata
Size: 3KB - Virtual size: 2KB

.xdata
Size: 1024B - Virtual size: 724B

.oegheh
Size: 359KB - Virtual size: 358KB

.4o68a
Size: 519KB - Virtual size: 519KB

.isos
Size: 638KB - Virtual size: 638KB

.a50tw5
Size: 254KB - Virtual size: 253KB

.rsrc
Size: 100KB - Virtual size: 99KB