2136cb32fcfabdc5f16c85e67904ef94_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2136cb32fcfabdc5f16c85e67904ef94_JaffaCakes118
Size

444KB
MD5

2136cb32fcfabdc5f16c85e67904ef94
SHA1

4780088a63521c5b2ea789fdbdbec27a687c7bee
SHA256

453623f471dc4438af9f147996062abc6a85143df31fde7f11d7191eee60090e
SHA512

fc0e64753b3f8d52959bbdc6fae71c07d143e64b881c3573755945ae4ce55778044008e90a642349fb6dd35e15805307a14f0f833dd863fff44caa337e9d8a0e
SSDEEP

6144:GGT7jcD++u8ubVXJ0/igGPA0JZPaZqFlo:GGzv+u8ubVXJg0LPUqj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2136cb32fcfabdc5f16c85e67904ef94_JaffaCakes118

Files

2136cb32fcfabdc5f16c85e67904ef94_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fee4073d5c50b0dd4a3993e16e4483bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

bc32fn

ZPREXTEND
ZNOKEY
ZRCID
RCISSW
GetAllocMem
FreeMemory
PropertiesEx
pvTerminateProgram
GetMemory
BCGetFileSize
ZNDIR
BCXGetDirList
BCXFreeDynaArray
BCXGetDynaArray
DefineOutputDev
InvertDate
strtrim
GetLeftChar
GetLineArgs
PRINTINFO
pFrmtBuffer
VARLIST
TABOffset
RestoreKeyBuffers
RPEE
RFLV
RPED
CheckProto
SaveKeyBuffers
iSopError
BCXReadProgramOptions
ZMINVER
ZTRADVER
SaveLocalData
EUROTruncDecimal
CVLire
TABClosePrinting
TABCloseSettings
TABJumpRowsExt
ZMAXREC
Name
TABSet
TruncDecimal
BCRound
TABWriteLineExt
ZPRTABVAR
CVEuro
PHT
PHD
GetTimeExt
TABCheckIntrExt
ANNOEXT
ZOPERATORE
ZPROFIS_INSTAL
WSP
FormatNumBlk
SetUpdateMode
StrToUpper
ZENDFIL
GetDBData
ZDB_OPERAZIONE
ZDB_INDICE
SetCondition
ZMINVERUX
pszCurrentModule
GR
PHG
szTmpBuf
StrAdd
DBXAccess
ZSYSTEM
SetString
WS
PHB
AddSl
SkipRightBlk
MakeDirectory
SearchString
GetPartOfString
iDBXError
ZNOFIL
RADDR
DBXISAMExvInterpreter
DBFILEINFO
ISAMExvInterpreter
FormatNumber
BcxExit
BCXCopy
pShMem
CreateSharedMem
RemoveSharedMem
GetSharedMemPtr
pVersione
bOptimizeSearch
iNewFrmSpec
pszSUBProto
psArgv
iArgc
PROGC
ZNOMEXE
BcMain
RestoreLocalData
BCXWriteProgramOptions
pInfoExe

bc32ui

WgsInitData
EntryTerminateProgram
ExitInitProgramData
RI
cColsRI
cRowsRI
EntryInitProgramData
WgsMemoryList
RCMEM
ZINIDEC
SYSDATEXT
wKeyFlags
RTAB
NCK
RCMULT
ZRCVIS
ZNSEL
ZNMAXSEL
RCSETSEL
RCBSLM
RCSELECT
ZSELST
DefinePos
GettingRowGrid
ZGRIGHE_TOT
GetWindowInput
DefineButton
DefineGrid3
VIODefineWindowExt
InsertColGrid
DefineTVString
DefineFormat
DefineCellGrid2
InsertRowGridEx
ZGRIGA
DefineVarsEx2
InsertVarsEx2
SetCellEnable
ZGCOL
TRIC
pszDecodMessage
ExitTerminateProgram
RCNOID
WgsRestoreWindow
pszWindowHeader
WgsDrawOutput
RO
WgsFormatColumn
RCCHAN
RCMKEY
NOIVA
WgsFileList
szProgramName
pszID
WgsDefineWindow
WgsDrawScreenFrame
RIF
RRA
KYM
RRI
RCI
ZDECOD
WgsSetValidateInput
WgsDrawScreen
WgsSetEnabledKeys
WgsSetDefinedKeys
WgsSetUncheckedKeys
WgsGetVideoInput
ABC
ZVIDCOMPVIS
WgsCheckInputData
pszErrorMessage
CANVID
WgsMessageBoxEx
RCSRCH
SearchSTR
WgsExitAppThread
WgsStartAppThread
WgsRunMainThreadLoop
WgsRestoreInputData

kernel32

ExitProcess
TerminateProcess
GetCurrentProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
GetProcAddress
RaiseException
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
DeleteFileA
VirtualAlloc
HeapReAlloc
LoadLibraryA
LCMapStringA
LCMapStringW
GetLastError

Sections

.text
Size: 348KB - Virtual size: 345KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fee4073d5c50b0dd4a3993e16e4483bb

Headers

File Characteristics

Imports

bc32fn

bc32ui

kernel32

Sections

.text Size: 348KB - Virtual size: 345KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 84KB - Virtual size: 82KB

.text
Size: 348KB - Virtual size: 345KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 84KB - Virtual size: 82KB