05a6f8b3757a012fcf9cfca408a5be6a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

05a6f8b3757a012fcf9cfca408a5be6a_JaffaCakes118
Size

142KB
MD5

05a6f8b3757a012fcf9cfca408a5be6a
SHA1

5d29cd99afdd1845fb7e3676d584f9631722a760
SHA256

813784bb3dfa5b92b01a39fe4b0953ccdf58f382f336611ff6852c7d7d4498d6
SHA512

4a7aa2b9fba81ce72d37fd7320ca5ebbe9d4778256e190f95fad06b6e1392623624878efa283f1722c01fd8a1e5f2df84b4f311cfc2f9fdf70ac281f334a7056
SSDEEP

3072:IKXPXdLVhub4/6yX6c/jqYgob0Zc0Cu1BkoC2R/1O:ZVuOqcaTZc0PiKO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05a6f8b3757a012fcf9cfca408a5be6a_JaffaCakes118

Files

05a6f8b3757a012fcf9cfca408a5be6a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

30f5fbbd820eb95ad198e945e0f1d4a5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetNamedPipeInfo
lstrcpy
GetTempPathA
GetVersionExA
FindResourceW
IsBadWritePtr
CreateFileA
EnumTimeFormatsW
IsBadStringPtrA
OpenFile
VirtualAlloc
GetLocaleInfoA
GlobalAlloc
OpenSemaphoreA
GetWindowsDirectoryW
OpenEventA
FileTimeToDosDateTime
GetEnvironmentStringsW
RemoveDirectoryA
OpenEventW
GetCurrentThread
GlobalFindAtomA
EnumTimeFormatsA
GetSystemInfo
CompareFileTime
GetCurrentDirectoryA
GetTimeFormatA
GetEnvironmentVariableW
CreateEventW
CreateFileMappingA
GetFileAttributesW
OpenWaitableTimerW
CreateSemaphoreA
SetThreadPriority
GlobalGetAtomNameW
GetProcessHeap
GetDiskFreeSpaceA
SetComputerNameA
MulDiv
SetCurrentDirectoryW
SetComputerNameW
EndUpdateResourceW
FatalAppExitA
SetUnhandledExceptionFilter
lstrcatA
GetWindowsDirectoryA
GetModuleFileNameW
CreateMutexA
GetVersionExW
LoadResource

user32

CharLowerW
TrackPopupMenu
GetMenuItemInfoW
CreateDesktopW
GetFocus
ShowWindow
CopyRect
DefWindowProcW
GetClassNameA
MessageBoxA
ArrangeIconicWindows
LoadBitmapA
GetWindowTextA
DefFrameProcA
WaitForInputIdle
RegisterClassA

gdi32

SetArcDirection
GetAspectRatioFilterEx
SetGraphicsMode
LineTo
InvertRgn
GetGlyphOutlineW
StartDocW
ColorCorrectPalette
CreateFontIndirectExW
GetObjectType
CreateScalableFontResourceW
ArcTo
EndPage
GetGlyphIndicesA
GetTextExtentPointA
SelectObject
GetTextExtentExPointI
SetWindowExtEx

advapi32

RegCreateKeyExA
RegOpenKeyExW
RegReplaceKeyA

shell32

SHGetFileInfoA

Sections

.J)?
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.*@0
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.3V7
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.LY
Size: 1024B - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.<9:p
Size: 1024B - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.W**
Size: 512B - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.>q1X
Size: 2KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

30f5fbbd820eb95ad198e945e0f1d4a5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.J)? Size: 10KB - Virtual size: 12KB

.*@0 Size: 512B - Virtual size: 2KB

.3V7 Size: 4KB - Virtual size: 3KB

.LY Size: 1024B - Virtual size: 47KB

.<9:p Size: 1024B - Virtual size: 26KB

.W** Size: 512B - Virtual size: 34KB

.>q1X Size: 2KB - Virtual size: 47KB

.rsrc Size: 118KB - Virtual size: 118KB

.reloc Size: 1024B - Virtual size: 768B

.J)?
Size: 10KB - Virtual size: 12KB

.*@0
Size: 512B - Virtual size: 2KB

.3V7
Size: 4KB - Virtual size: 3KB

.LY
Size: 1024B - Virtual size: 47KB

.<9:p
Size: 1024B - Virtual size: 26KB

.W**
Size: 512B - Virtual size: 34KB

.>q1X
Size: 2KB - Virtual size: 47KB

.rsrc
Size: 118KB - Virtual size: 118KB

.reloc
Size: 1024B - Virtual size: 768B