047297bd5d4e39b416430004e9c3e96b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

047297bd5d4e39b416430004e9c3e96b_JaffaCakes118
Size

524KB
MD5

047297bd5d4e39b416430004e9c3e96b
SHA1

797066b7ca937a40dcc6b9abfa7d3774e09019ed
SHA256

3e79717339b6d4ced21a60fbbd709324e318e7844428f53a5b5712133d727fd2
SHA512

dfc77ffde94a013391a96c0d3cb1ccefb0775046505447122c1275e68658ea7cd0d8b74740b2f9c21ab5a364c832e1710919ab670e45c529d19268d7c32b7839
SSDEEP

12288:Z0gFR2qhVFQ+lUDkhUPfF5I31pv1dT1IJ3cwmwpgbZ9xBI:egFUQa+wEUP/cDdJI3bmnbZ9HI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
047297bd5d4e39b416430004e9c3e96b_JaffaCakes118

Files

047297bd5d4e39b416430004e9c3e96b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3e3fa0d84459978a118f50ba8a7a5936

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_AddIcon
ImageList_Remove
InitCommonControlsEx
CreateStatusWindowA
MakeDragList
ImageList_LoadImageW
ImageList_SetFlags
ImageList_EndDrag
ImageList_SetBkColor
ImageList_GetFlags
CreatePropertySheetPageW
ImageList_SetImageCount
ImageList_GetImageCount
CreateStatusWindow
ImageList_Draw
CreatePropertySheetPage
ImageList_Replace
ImageList_Read
ImageList_DrawEx
ImageList_LoadImageA

user32

RegisterClassA
ChildWindowFromPointEx
LoadAcceleratorsW
CreateDialogParamA
DestroyWindow
SetForegroundWindow
ValidateRgn
DdeQueryStringW
RegisterClassExA
DlgDirListComboBoxA
GetWindowTextW
MessageBoxW
CheckMenuRadioItem
LoadCursorA
DrawStateW
CreateWindowExW
TranslateAcceleratorA
EndDialog
ShowWindow
CallMsgFilterW
GetKeyboardLayoutNameW
DefWindowProcW

kernel32

ExitProcess
GetCurrentThread
OpenSemaphoreW
GetTimeFormatW
FillConsoleOutputAttribute
InterlockedDecrement
QueryPerformanceCounter
EnumDateFormatsExW
lstrlenA
EnumCalendarInfoW
LoadLibraryA
DeleteCriticalSection
GetEnvironmentStrings
FreeEnvironmentStringsW
GetConsoleCursorInfo
SetFilePointer
lstrlenW
GlobalReAlloc
CloseHandle
SetConsoleOutputCP
GetCurrentProcess
CreateToolhelp32Snapshot
TerminateProcess
GetStartupInfoW
GetModuleFileNameA
WriteFile
SetTimeZoneInformation
ReadConsoleA
RtlUnwind
InitializeCriticalSection
FlushViewOfFile
GetNamedPipeHandleStateW
CompareStringW
TlsSetValue
AllocConsole
TlsGetValue
GetConsoleCP
InterlockedExchange
GetLongPathNameW
SetThreadAffinityMask
CreateProcessW
SetHandleCount
CreateMutexA
GetPrivateProfileSectionW
GetCommandLineW
FreeEnvironmentStringsA
GetTempFileNameA
ReadConsoleOutputCharacterW
HeapCreate
LeaveCriticalSection
IsBadWritePtr
PulseEvent
CompareStringA
EnumDateFormatsA
GetStringTypeW
UnhandledExceptionFilter
WriteConsoleA
InterlockedIncrement
GlobalHandle
HeapAlloc
MultiByteToWideChar
GlobalGetAtomNameW
GetStdHandle
SetPriorityClass
VirtualAlloc
GetProfileStringA
LocalFlags
GetModuleFileNameW
GetCPInfo
WideCharToMultiByte
EnterCriticalSection
HeapDestroy
SetStdHandle
GetVersion
HeapReAlloc
GetTimeZoneInformation
GetTickCount
GetFileAttributesW
GetProcAddress
SetConsoleCursorPosition
GetSystemTime
GetEnvironmentVariableA
GetFileType
CreateFileMappingA
GetModuleHandleA
GetStringTypeA
LCMapStringA
VirtualLock
ReadFile
GetLocalTime
VirtualFree
GetSystemDirectoryW
GetStartupInfoA
TlsFree
GetSystemTimeAsFileTime
GetLongPathNameA
FlushFileBuffers
LoadLibraryW
GlobalGetAtomNameA
FindNextFileA
GetSystemDirectoryA
OpenMutexA
GetLastError
HeapFree
GlobalFindAtomA
EnumSystemLocalesW
VirtualQuery
SetLastError
DeleteFileA
GetCurrentProcessId
LocalUnlock
GetCurrentThreadId
CreateFileMappingW
TlsAlloc
LCMapStringW
FindClose
GetPrivateProfileStructW
SetEnvironmentVariableA
GetCurrentDirectoryW
GetCommandLineA
GlobalFix
GetEnvironmentStringsW
GetMailslotInfo

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 247KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3e3fa0d84459978a118f50ba8a7a5936

Headers

File Characteristics

Imports

comctl32

user32

kernel32

Sections

.text Size: 144KB - Virtual size: 143KB

.rdata Size: 248KB - Virtual size: 247KB

.data Size: 112KB - Virtual size: 135KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 144KB - Virtual size: 143KB

.rdata
Size: 248KB - Virtual size: 247KB

.data
Size: 112KB - Virtual size: 135KB

.rsrc
Size: 16KB - Virtual size: 12KB