048584d6aa76361464c4cbf42e833e23_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

048584d6aa76361464c4cbf42e833e23_JaffaCakes118
Size

620KB
MD5

048584d6aa76361464c4cbf42e833e23
SHA1

0df57792e9721a7f8dda5f1a85cfda3108715838
SHA256

8ab2f9ebeacbc591e4dba6185c4ae924d8726f5e02c74965abf5853d06659e49
SHA512

69045c8ff068f2b21ef12c1306fac52801d6e44e618d8cf05643afc552010d388813944997526ad9d91028e109cdc8b1bd6a8ae11ede3fa84a1f7aa1d610ed60
SSDEEP

12288:eOebaGC4s1bU3UOWdHyETCojpYwIOAunqMgdtfKerMAD/P:eBbI4s9OUOWd1TCo1Y5DDPlZz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
048584d6aa76361464c4cbf42e833e23_JaffaCakes118

Files

048584d6aa76361464c4cbf42e833e23_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3fe6bd6ad467937eb6ed707a24afa5c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeCreateStringHandleW
ShowWindow
GetNextDlgGroupItem
EnumDisplaySettingsExA
OpenInputDesktop
GetCursor
CreateIconFromResource
GetMenuItemCount
TrackPopupMenuEx
CreateWindowExW
MessageBoxW
TranslateAcceleratorA
GetClassNameA
wvsprintfA
DefWindowProcA
SetWindowWord
SetDoubleClickTime
DestroyWindow
RegisterClassExA
CharToOemA
GetKeyboardLayoutList
GrayStringW
RegisterClassA
UnregisterClassW

shell32

SHGetDiskFreeSpaceA
ExtractAssociatedIconA
ShellExecuteEx
SHBrowseForFolderW

comdlg32

LoadAlterBitmap
ChooseFontW
GetOpenFileNameW

kernel32

LCMapStringW
SystemTimeToTzSpecificLocalTime
GetModuleHandleW
GetCPInfo
CreateMutexA
TlsAlloc
GetSystemTimeAsFileTime
CreateFileA
SetFilePointer
GetEnvironmentStringsA
GetUserDefaultLCID
WideCharToMultiByte
TlsFree
SetSystemTime
SetThreadAffinityMask
GetConsoleCP
IsDebuggerPresent
InterlockedIncrement
VirtualAlloc
QueryPerformanceCounter
WriteConsoleOutputA
GetCurrentProcess
CreateDirectoryExA
MultiByteToWideChar
FindFirstFileExA
GetLongPathNameW
LoadLibraryA
GetACP
SetHandleCount
InterlockedExchange
GetCurrentThreadId
EnumResourceTypesW
SetLocaleInfoA
GetModuleFileNameA
GetConsoleOutputCP
GetConsoleMode
HeapFree
WriteConsoleA
GetLastError
RaiseException
GetDateFormatA
GetSystemDefaultLangID
GetStdHandle
GetStartupInfoW
RtlUnwind
TlsSetValue
VirtualQuery
LeaveCriticalSection
WaitNamedPipeW
SetLastError
FreeEnvironmentStringsW
GetTimeZoneInformation
Sleep
GetCommandLineA
CreateSemaphoreW
HeapDestroy
FreeLibrary
FreeEnvironmentStringsA
GetEnvironmentVariableA
lstrcmpiW
DosDateTimeToFileTime
GetCurrentProcessId
DeleteCriticalSection
GetPrivateProfileSectionA
SetLocaleInfoW
HeapAlloc
CompareFileTime
HeapReAlloc
GetCurrentDirectoryA
WriteConsoleW
GetLocaleInfoA
GetTimeFormatA
GetNamedPipeHandleStateA
GetEnvironmentStringsW
GetLogicalDriveStringsW
CreateThread
InitializeCriticalSectionAndSpinCount
WaitForDebugEvent
CreateMutexW
InterlockedDecrement
WriteFile
EnumTimeFormatsW
LocalCompact
GetLogicalDrives
SetUnhandledExceptionFilter
OpenMutexA
EnumSystemLocalesA
GetCurrentThread
ExitProcess
SetEnvironmentVariableA
IsValidLocale
GetProcAddress
CompareStringW
ReadFile
GetCommandLineW
FlushFileBuffers
TlsGetValue
GetStartupInfoA
GetStringTypeA
UnhandledExceptionFilter
WriteConsoleOutputCharacterW
GetEnvironmentStrings
GetModuleHandleA
GetMailslotInfo
VirtualFree
TerminateProcess
SetConsoleScreenBufferSize
HeapCreate
IsValidCodePage
SetConsoleCtrlHandler
GetCurrencyFormatA
LCMapStringA
GetOEMCP
VirtualFreeEx
GetTickCount
WriteProfileStringA
GetFileType
FileTimeToLocalFileTime
SetStdHandle
HeapSize
CloseHandle
CompareStringA
PulseEvent
GetLocaleInfoW
GetStringTypeW
EnterCriticalSection

comctl32

ImageList_Read
ImageList_LoadImage
ImageList_Merge
ImageList_SetImageCount
InitCommonControlsEx
ImageList_SetIconSize
DrawStatusTextA
ImageList_BeginDrag

gdi32

Rectangle
GetDIBits
GetTextCharacterExtra
DeviceCapabilitiesExA
ExtCreateRegion
GetLayout
Ellipse
DeviceCapabilitiesExW
SetViewportExtEx
PolyPolygon
CreateColorSpaceA
GetWindowOrgEx
ResetDCA
PlayEnhMetaFileRecord
LineTo
FlattenPath
UpdateColors
SetTextAlign
SetMagicColors
GdiPlayDCScript
FixBrushOrgEx
AnimatePalette
GetCharABCWidthsW
CreateEllipticRgn

Sections

.text
Size: 176KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3fe6bd6ad467937eb6ed707a24afa5c0

Headers

File Characteristics

Imports

user32

shell32

comdlg32

kernel32

comctl32

gdi32

Sections

.text Size: 176KB - Virtual size: 173KB

.rdata Size: 264KB - Virtual size: 260KB

.data Size: 112KB - Virtual size: 135KB

.rsrc Size: 64KB - Virtual size: 61KB

.text
Size: 176KB - Virtual size: 173KB

.rdata
Size: 264KB - Virtual size: 260KB

.data
Size: 112KB - Virtual size: 135KB

.rsrc
Size: 64KB - Virtual size: 61KB