1acf402039c1a5357607409fb5c4ae4c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1acf402039c1a5357607409fb5c4ae4c_JaffaCakes118
Size

388KB
MD5

1acf402039c1a5357607409fb5c4ae4c
SHA1

c9550091b463065a620ece941a0dc24048394df2
SHA256

304f6761278a1e84714daba6387e2b988e0a76af8c20b7e3dd1eae06e039d4e0
SHA512

9954b9fc3619120b76a8cf47633b41c58c3e8bf9b8e33e707b982cc6e8a21d242e0eda5c875ac752ada3fa2f8006d0db663b2df505a6a62fb88becb65be09131
SSDEEP

1536:3Lz8qWODr6evuuuXSw3/FKZyAjKRINHf9holKO78k4BqvSAcdMzuYcY8YaU4e7kD:n8qWODOSXuXrPwBI4K30Y3uR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1acf402039c1a5357607409fb5c4ae4c_JaffaCakes118

Files

1acf402039c1a5357607409fb5c4ae4c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f49da9e60fed894e189493a2cccea49f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord6376
ord3749
ord2055
ord2648
ord5065
ord5261
ord2446
ord2124
ord5277
ord1727
ord2982
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3402
ord3830
ord3831
ord3147
ord3825
ord4080
ord4627
ord4424
ord3716
ord800
ord790
ord795
ord641
ord860
ord540
ord567
ord324
ord825
ord2298
ord2297
ord2363
ord2289
ord2370
ord6646
ord2301
ord2302
ord4234
ord3079
ord6111
ord4710
ord1200
ord4853
ord2513
ord293
ord3571
ord941
ord858
ord537
ord1641
ord1146
ord823
ord640
ord1640
ord323
ord3663
ord3626
ord2414
ord2818
ord6170
ord5875
ord1199
ord939
ord924
ord535
ord2452
ord4275
ord755
ord6199
ord2864
ord470
ord4671
ord1842
ord4242
ord2723
ord2390
ord3059
ord5100
ord5103
ord4467
ord4303
ord3350
ord5012
ord975
ord5472
ord3403
ord6334
ord3798
ord4151
ord4077
ord5237
ord4837
ord4441
ord1665
ord4436
ord674
ord366
ord4457
ord1232
ord1168
ord5252
ord5981
ord4427
ord6215
ord3874
ord1175
ord4220
ord2584
ord3654
ord2438
ord2863
ord1644
ord4413
ord4274
ord6375
ord4486
ord2554
ord2512
ord5731
ord5265
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord2725
ord4079
ord4698
ord5307
ord5289
ord5714
ord4622
ord3738
ord561
ord815
ord6876
ord6117
ord2621
ord3742
ord818
ord1233
ord283
ord613
ord289
ord2379
ord3619
ord6172
ord5789
ord2859
ord5785
ord2971
ord5759
ord6192
ord5756
ord6186
ord4330
ord6189
ord6021
ord5873
ord5794
ord5678
ord5736
ord5579
ord5571
ord6061
ord5864
ord3596
ord6194
ord2582
ord4402
ord3370
ord3640
ord693
ord922
ord6906
ord665
ord1979
ord3318
ord5186
ord354
ord4078
ord6055
ord3721
ord3597
ord4425
ord5280
ord1775
ord6052
ord2514
ord4998
ord4376
ord5290
ord4353
ord6374
ord5163
ord2385
ord5241
ord4407
ord1776
ord5282
ord2649
ord2879
ord2878
ord3922
ord1576

msvcrt

__dllonexit
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_onexit
_controlfp
__CxxFrameHandler
_ftol
_strdup
free
srand
time
rand
_mbscmp
sprintf
_except_handler3
?terminate@@YAXXZ
_setmbcp

kernel32

GetPrivateProfileStructA
GlobalLock
GlobalAlloc
GlobalFree
GlobalUnlock
GetModuleHandleA
GetStartupInfoA
Sleep
WritePrivateProfileStructA

user32

SetMenuDefaultItem
FillRect
GetClientRect
RedrawWindow
UpdateWindow
SetCapture
ReleaseCapture
GetDC
SetCursor
TabbedTextOutA
DrawTextA
GrayStringA
GetCursorPos
TrackPopupMenu
PostMessageA
SetForegroundWindow
DefWindowProcA
LoadIconA
RegisterWindowMessageA
GetParent
MessageBeep
LoadBitmapA
EnableWindow
SendMessageA
MessageBoxA
GetSubMenu
LoadMenuA
LoadCursorA

gdi32

CreateCompatibleBitmap
BitBlt
SelectObject
CreateCompatibleDC
CreateFontA
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape

shell32

Shell_NotifyIconA

winmm

mciSendCommandA
PlaySoundA

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 328KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f49da9e60fed894e189493a2cccea49f

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

user32

gdi32

shell32

winmm

Sections

.text Size: 40KB - Virtual size: 39KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 328KB - Virtual size: 363KB

.text
Size: 40KB - Virtual size: 39KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 328KB - Virtual size: 363KB