1945c22a41e0b331741b2a5148e5b24b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

1945c22a41e0b331741b2a5148e5b24b_JaffaCakes118
Size

619KB
MD5

1945c22a41e0b331741b2a5148e5b24b
SHA1

61f004802363ffe05981926e6d0a8be2ad4fd3d8
SHA256

e777cfe1ce71fcc9e117085a02b710a9ef6d1dc37bd6f0fcfb1a74a7b764961f
SHA512

47240467f133ea4dd2b634533fd0d346ed7197cb7c328f50d06a47fe598fbfade8c3461c111ba86da1bbd213b44872383cd1ff665255184c1a68585b5e7b3f30
SSDEEP

12288:3CDZo9y984Y4wHkWD2l/rB5HodUppcIvl+3UIdwpK9X:3CNKyy4YtHk9/rLHzr5uUId

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1945c22a41e0b331741b2a5148e5b24b_JaffaCakes118

Files

1945c22a41e0b331741b2a5148e5b24b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3c8920088507216fc84658eccf8db69b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AnimateWindow
RegisterClipboardFormatW
IsIconic
DlgDirSelectComboBoxExA
SetTimer
GetClassNameA
RegisterClassA
GetWindowLongA
FlashWindow
RegisterClassExA
SetDlgItemInt
FillRect
CharUpperBuffA
CallNextHookEx
ChildWindowFromPoint
ToAscii
MapDialogRect
GetUpdateRgn
GrayStringW
PaintDesktop
ChangeDisplaySettingsA
IsDlgButtonChecked
TabbedTextOutA
SetDlgItemTextA
EnumDisplayDevicesA
DeleteMenu

gdi32

GetTextExtentPointW
TextOutW
GetTextCharset
OffsetWindowOrgEx

kernel32

GetModuleFileNameW
GetACP
TlsGetValue
WriteFile
LCMapStringW
GetOEMCP
FreeEnvironmentStringsA
GetCommandLineA
TerminateProcess
GetModuleFileNameA
RtlUnwind
GetStringTypeW
UnhandledExceptionFilter
GetLastError
VirtualAlloc
FlushFileBuffers
SetHandleCount
CreateMutexA
TlsSetValue
HeapSize
GetCurrentThreadId
SetStdHandle
WideCharToMultiByte
IsValidCodePage
LocalFlags
GetTimeZoneInformation
VirtualFree
CompareStringW
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
GetStdHandle
TlsFree
GetVersionExA
GetModuleHandleA
LeaveCriticalSection
VirtualQuery
GetLocaleInfoW
HeapFree
HeapDestroy
WritePrivateProfileStringW
LoadLibraryExA
GetEnvironmentStringsW
GetCommandLineW
GetEnvironmentStrings
GetTimeFormatA
ReadFile
GetProcAddress
VirtualProtect
GetSystemInfo
CloseHandle
SetLastError
GetUserDefaultLCID
EnumSystemLocalesA
InitializeCriticalSection
SetEnvironmentVariableA
TlsAlloc
CompareStringA
ExitProcess
HeapAlloc
DeleteCriticalSection
EnterCriticalSection
GetStartupInfoW
HeapCreate
HeapReAlloc
InterlockedExchange
GetCurrentProcess
GetCurrentThread
IsValidLocale
GetLocaleInfoA
GetFileType
GetTickCount
SetFilePointer
IsBadWritePtr
MultiByteToWideChar
GetCPInfo
QueryPerformanceCounter
OpenMutexA
GetDateFormatA
GetStartupInfoA
GetCurrentProcessId
LoadLibraryA
GetStringTypeA
LCMapStringA

comctl32

InitCommonControlsEx

Sections

.text
Size: 247KB - Virtual size: 246KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 360KB - Virtual size: 359KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c8920088507216fc84658eccf8db69b

Headers

File Characteristics

Imports

user32

gdi32

kernel32

comctl32

Sections

.text Size: 247KB - Virtual size: 246KB

.rdata Size: 8KB - Virtual size: 12KB

.data Size: 360KB - Virtual size: 359KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 247KB - Virtual size: 246KB

.rdata
Size: 8KB - Virtual size: 12KB

.data
Size: 360KB - Virtual size: 359KB

.rsrc
Size: 3KB - Virtual size: 2KB