00ac417e58f9764c4cff92ae6625145b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

00ac417e58f9764c4cff92ae6625145b_JaffaCakes118
Size

356KB
MD5

00ac417e58f9764c4cff92ae6625145b
SHA1

a7538740ae951e3c99064ab84b114f30165d66f1
SHA256

017e82fed61dca6e40ae52c4284064cffda434bc9d005ab05d7dbf2928ae9372
SHA512

881d81bdf7e505bff6fc5f82f59b5d12f0810ffc07ecb08cbe3785c01ef3699ba1f74a60094b639dad318ee105375a6ad4a6acf0e656c4fdc7d7bfeec825f746
SSDEEP

6144:d4t48U7gphUC4eE/1Ccmtc2lFhYY+rZBvSMy7mm5L0VPwpxDLv:om70hqeE/1n65lHY59Jm5L0Ve

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00ac417e58f9764c4cff92ae6625145b_JaffaCakes118

Files

00ac417e58f9764c4cff92ae6625145b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e709e14b652544d9d8e3d9358800e104

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoUninitialize
CoCreateInstance

oleaut32

SysAllocStringLen
SysAllocString

advapi32

OpenProcessToken
RegCloseKey
RegOpenKeyExW
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA

kernel32

VirtualFree
HeapCreate
GetLocalTime
TlsGetValue
CreateProcessA
GetEnvironmentStrings
GetVersion
GetACP
CloseHandle
FindFirstFileA
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
WideCharToMultiByte
GetCommandLineW
LockResource
GetCurrentProcessId
SizeofResource
CreateProcessW
Sleep
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
GetLastError
LeaveCriticalSection
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateFileW
CreateEventW
GlobalLock
DuplicateHandle
CreateFileMappingA
CompareStringA
lstrcpyA
FindNextFileW
CompareStringW
GetProcessHeap
GetProcAddress
DeleteFileW
GetModuleHandleW
CreateDirectoryA
LCMapStringW
GetStartupInfoA
DeleteFileA
GetVersionExA
TlsAlloc
GetTickCount
QueryPerformanceCounter
SetEvent
GetVersionExW
LoadLibraryW
FindResourceA
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
GetCurrentThreadId
SetEndOfFile
GetConsoleMode
VirtualQuery
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
CreateMutexA
MultiByteToWideChar
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
FlushFileBuffers
ExitProcess
IsDebuggerPresent
VirtualProtect
GetModuleFileNameW
lstrlenW
InitializeCriticalSection
GetSystemTime
SetLastError
OutputDebugStringA
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
GetEnvironmentVariableA
FormatMessageW
LocalFree
FreeLibrary
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
GetTimeZoneInformation
WriteFile
InterlockedExchange
GetStringTypeA
lstrcmpiA
GetCPInfo
GetTempPathA
SetStdHandle
GetLocaleInfoW
FreeEnvironmentStringsW
SetErrorMode
LocalAlloc
GetLocaleInfoA
GetCurrentDirectoryA
GetStartupInfoW
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetExitCodeProcess
GetFileAttributesW
HeapDestroy
WaitForSingleObject
GetFileAttributesA
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetUserDefaultLCID
GetSystemDefaultLangID
GetUserDefaultLangID
GetSystemDefaultLCID
RtlUnwind
FatalAppExitA
IsBadWritePtr
LoadLibraryA
SetConsoleCtrlHandler
IsValidLocale
IsValidCodePage
EnumSystemLocalesA
VirtualAlloc
GetOEMCP
SetHandleCount

user32

MessageBoxA
ReleaseDC
GetDesktopWindow
SendMessageA
LoadIconA
LoadCursorA
ScreenToClient
GetDlgItem
SetTimer
CheckMenuItem
SetWindowTextA
EndDialog
SetWindowLongA
ReleaseCapture
PostMessageA
GetWindowRect
GetSystemMetrics
DefWindowProcA
KillTimer
BeginPaint
SetFocus
EndPaint
FillRect
GetSysColor
GetWindowLongA
GetWindow
IsWindowEnabled
TranslateMessage
SetWindowPos
PeekMessageA
EnableWindow
SetCapture
ShowWindow
UpdateWindow
GetParent
DestroyWindow
GetKeyState
ClientToScreen
UnregisterClassA
GetDC
DispatchMessageA
IsWindow
PostQuitMessage
SetForegroundWindow
CallWindowProcA
GetFocus
SetCursor
wsprintfA
CreateWindowExA
GetClientRect

gdi32

GetDeviceCaps
DeleteObject
SetBkColor
BitBlt
DeleteDC
SelectObject
CreateCompatibleDC
SetBkMode

Sections

.text
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 240KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e709e14b652544d9d8e3d9358800e104

Headers

File Characteristics

Imports

ole32

oleaut32

advapi32

kernel32

user32

gdi32

Sections

.text Size: 84KB - Virtual size: 80KB

.rdata Size: 240KB - Virtual size: 236KB

.data Size: 20KB - Virtual size: 21KB

.rsrc Size: 8KB - Virtual size: 4KB

.text
Size: 84KB - Virtual size: 80KB

.rdata
Size: 240KB - Virtual size: 236KB

.data
Size: 20KB - Virtual size: 21KB

.rsrc
Size: 8KB - Virtual size: 4KB