19e1c7f135f68a611774b74fdde7c654_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

19e1c7f135f68a611774b74fdde7c654_JaffaCakes118
Size

4.0MB
MD5

19e1c7f135f68a611774b74fdde7c654
SHA1

d9295094c6ee18be3e6015585c21b864fc6a11fd
SHA256

7a7fdc74ad34eebba03ef14210b82f3de575780af9be06b13b4baa2ecde37bb5
SHA512

f932464042158e357b5378995ffac00e50ba000d29a4bc0935ac25693db143c69ead094c4115f9afdda3d1e6cc91024e0db56444968d66dcbf063e642341fea6
SSDEEP

98304:fpM/kjuwQoLruKNyr7kityKWxU7bEEugTiw8Gw:fm0uwfPNk7RtHIyEoiwY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19e1c7f135f68a611774b74fdde7c654_JaffaCakes118

Files

19e1c7f135f68a611774b74fdde7c654_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bf62e2e2b31f0846084b84db40d73af6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetOEMCP
GetACP
GetCPInfo
LCMapStringW
LCMapStringA
HeapReAlloc
VirtualAlloc
VirtualFree
HeapDestroy
GetEnvironmentVariableA
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
MoveFileA
DeleteFileA
GetCurrentDirectoryA
SetEnvironmentVariableA
CreateDirectoryA
HeapFree
HeapAlloc
HeapCompact
TerminateProcess
ExitProcess
GetFileAttributesA
SetFileAttributesA
GetPrivateProfileStringA
GetVersion
GetVersionExA
GetModuleFileNameA
GetDriveTypeA
GetCurrentProcess
MoveFileExA
FormatMessageA
SetFileTime
WritePrivateProfileStringA
GetWindowsDirectoryA
GetSystemDirectoryA
GetLocalTime
GetFullPathNameA
FindFirstFileA
FindClose
MultiByteToWideChar
WideCharToMultiByte
GetTempPathA
GetStringTypeW
GetShortPathNameA
SetCurrentDirectoryA
GetExitCodeProcess
CreateProcessA
lstrcatA
lstrlenA
WinExec
LoadLibraryA
GetProcAddress
FreeLibrary
GetDiskFreeSpaceA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
CloseHandle
SetFilePointer
WriteFile
ReadFile
CreateFileA
HeapCreate
GetLastError

user32

DialogBoxParamA
ExitWindowsEx
IsIconic
RedrawWindow
PostQuitMessage
DefWindowProcA
BringWindowToTop
PostMessageA
EndDialog
IsDlgButtonChecked
CheckDlgButton
SetTimer
GetDlgItemTextA
GetLastActivePopup
FindWindowA
RegisterClassA
LoadIconA
AdjustWindowRectEx
GetWindow
SendMessageA
GetSysColor
ScreenToClient
GetWindowRect
GetDlgItem
EndPaint
BeginPaint
GetClientRect
FillRect
SendDlgItemMessageA
CheckRadioButton
SetFocus
SetWindowTextA
GetParent
UpdateWindow
IsWindowVisible
InvalidateRect
CreateDialogParamA
TranslateMessage
DispatchMessageA
IsDialogMessageA
GetMessageA
SetDlgItemTextA
SetWindowPos
ShowWindow
DestroyWindow
CreateWindowExA
GetWindowLongA
IsWindowEnabled
EnableWindow
CallWindowProcA
ValidateRect
SetWindowLongA
GetClassNameA
MessageBoxA
PeekMessageA
wsprintfA
GetSystemMetrics
DrawTextA
LoadCursorA

gdi32

CreatePalette
SetBkColor
ExtTextOutA
CreateFontIndirectA
GetSystemPaletteEntries
SetTextColor
SetBkMode
AddFontResourceA
RemoveFontResourceA
GetStockObject
GetDeviceCaps
DeleteDC
DeleteObject
BitBlt
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
RealizePalette
SelectPalette
CreateHalftonePalette
CreateDIBPatternBrush
CreateSolidBrush
StretchDIBits
SetStretchBltMode
SetBrushOrgEx

advapi32

RegQueryValueExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegCreateKeyA
RegCloseKey
RegDeleteValueA
RegOpenKeyA
RegSetValueExA
RegOpenKeyExA
RegQueryValueA

shell32

ShellExecuteA
SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetSpecialFolderLocation

ole32

OleInitialize
CoCreateInstance
CoGetMalloc
OleUninitialize

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
VerFindFileA

comctl32

ord17

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mrdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bf62e2e2b31f0846084b84db40d73af6

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

version

comctl32

Sections

.text Size: 84KB - Virtual size: 83KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 20KB - Virtual size: 21KB

.rsrc Size: 12KB - Virtual size: 10KB

.mrdata Size: 72KB - Virtual size: 72KB

.text
Size: 84KB - Virtual size: 83KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 20KB - Virtual size: 21KB

.rsrc
Size: 12KB - Virtual size: 10KB

.mrdata
Size: 72KB - Virtual size: 72KB