223e25bf127e03971499500c06975326_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

223e25bf127e03971499500c06975326_JaffaCakes118
Size

203KB
MD5

223e25bf127e03971499500c06975326
SHA1

8477e6abd598d8c6b4d8ca426c93a97b93c95673
SHA256

99d1556ec9f763e29391a2f18e5d4988d644eda46d80d8a78f527a8fb2281d03
SHA512

86918c984d93c21791db5c7448708b1b042727b2195f30fdfe263f455df15033729f87d029454a7644b3baa6e395e0e840615ff8640d754168757b79ab07d71c
SSDEEP

3072:Ao0sGl7NjgEQNXm81CNz1jZ9dT1iwI1zl1gz3L+LJkN9NhxH8ESmTGrX4v6:A/sGl7CEQ9mJ119d4Z+zaLJkPP5zCIy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
223e25bf127e03971499500c06975326_JaffaCakes118

Files

223e25bf127e03971499500c06975326_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fa86a854b05bf09286d5b3a1233a7ddd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumeInformationA
GetSystemInfo
Sleep
FindClose
FindNextFileA
FindFirstFileA
GetDiskFreeSpaceA
GetFileSize
GetWindowsDirectoryA
GetModuleFileNameA
SetCurrentDirectoryA
DeleteFileA
GetTempPathA
WinExec
OpenFile
CreateProcessA
WaitForSingleObject
CloseHandle
SetFileAttributesA
DosDateTimeToFileTime
GetSystemDirectoryA
VirtualAlloc
VirtualFree
_lread
_llseek
GetTimeZoneInformation
_lwrite
SetVolumeLabelA
GetLastError
_lclose
GetDriveTypeA
GetFullPathNameA
GetFileAttributesA
CreateFileA
SetFileTime
RemoveDirectoryA
GetVersionExA
ReadFile
LoadLibraryA
CompareStringW
CompareStringA
SetEnvironmentVariableA
SetStdHandle
GetEnvironmentStringsW
SetFilePointer
GetEnvironmentStrings
FreeEnvironmentStringsA
FreeEnvironmentStringsW
RtlUnwind
GetOEMCP
UnhandledExceptionFilter
GetCPInfo
LCMapStringW
GetACP
MultiByteToWideChar
GetStringTypeW
LCMapStringA
GetStringTypeA
GetStdHandle
WideCharToMultiByte
SetHandleCount
WriteFile
GetFileType
HeapCreate
FlushFileBuffers
GetProcAddress
GetVersion
LocalFileTimeToFileTime
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
ExitProcess
CreateDirectoryA
GetCurrentDirectoryA
GetLocalTime
FileTimeToLocalFileTime
FileTimeToSystemTime
HeapFree
HeapReAlloc
HeapAlloc

user32

TranslateMessage
MessageBoxA
DestroyIcon
DestroyCursor
GetDesktopWindow
GetWindowRect
EnableWindow
DispatchMessageA
PeekMessageA
ShowWindow
DdeCreateStringHandleA
DdeConnect
wsprintfA
DdeCreateDataHandle
DdeClientTransaction
DdeGetLastError
PostQuitMessage
EnumWindows
SetWindowPos
DestroyWindow
SetActiveWindow
LoadIconA
GetSysColor
GetMessageA
DdeFreeStringHandle
DdeDisconnect
DdeUninitialize
IsDialogMessageA
EnableMenuItem
GetDlgItem
GetDlgCtrlID
GetClassInfoA
MessageBeep
InvalidateRect
UpdateWindow
CallWindowProcA
FrameRect
DrawFocusRect
DdeInitializeA
ReleaseDC
FillRect
OemToCharA
KillTimer
SetWindowLongA
SetTimer
MoveWindow
GetWindowLongA
DefWindowProcA
BeginPaint
CreateWindowExA
SetFocus
GetWindowTextA
GetClientRect
EndPaint
RegisterClassA
PostMessageA
UnregisterClassA
GetDC
SetWindowWord
GetParent
GetWindowWord
SetCursor
SendMessageA
LoadCursorA
SetWindowTextA
LoadBitmapA
AdjustWindowRectEx
ScreenToClient

gdi32

GetTextExtentPoint32A
DeleteObject
GetTextMetricsA
CreateFontIndirectA
EnumFontFamiliesA
SetBkColor
SetTextColor
SetBkMode
TextOutA
DeleteDC
BitBlt
CreateCompatibleDC
CreateSolidBrush
LineTo
MoveToEx
CreatePen
GetStockObject
SelectObject

shell32

FindExecutableA
SHBrowseForFolder
SHGetPathFromIDList
ShellExecuteA

ole32

CoTaskMemFree

mpr

WNetGetConnectionA

advapi32

RegSetValueA
RegQueryValueA

Sections

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 169B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fa86a854b05bf09286d5b3a1233a7ddd

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

mpr

advapi32

Sections

.text Size: 72KB - Virtual size: 72KB

.rdata Size: 512B - Virtual size: 169B

.data Size: 7KB - Virtual size: 114KB

.idata Size: 5KB - Virtual size: 4KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 8KB - Virtual size: 8KB

.text
Size: 72KB - Virtual size: 72KB

.rdata
Size: 512B - Virtual size: 169B

.data
Size: 7KB - Virtual size: 114KB

.idata
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 8KB - Virtual size: 8KB