22b28346eca8e812650d6ec0d39d33f6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

22b28346eca8e812650d6ec0d39d33f6_JaffaCakes118
Size

217KB
MD5

22b28346eca8e812650d6ec0d39d33f6
SHA1

220fc78b17cd65a0af3bbe9c8a80430ab8cce8aa
SHA256

9df240ef7c295c0d3dc2e19ea34b9624121c4521ebfa26b38e7600f10a829786
SHA512

0d46184517bb87cd170d5861957003dc0eb042b39b5002057ccb52066008844a4e3592fe871d506599eed86dc352ee110efcf9762fe97ef1176a20069ce0b265
SSDEEP

3072:NjUi5Tp954pLHMNV5UGvbJIWCXlfNabSJkQlalrH96d4B4mTSMdrng04BExLmRir:D545MNV5tuRk64B4mTPrFLmRi3b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22b28346eca8e812650d6ec0d39d33f6_JaffaCakes118

Files

22b28346eca8e812650d6ec0d39d33f6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1c47125b9d68243dfc7ea80e615c7e09

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

FindResourceA
GetTempFileNameA
GetTempPathA
GetModuleFileNameA
GetModuleHandleA
WideCharToMultiByte
MultiByteToWideChar
GetUserDefaultLangID
MulDiv
GetDiskFreeSpaceExA
GetVolumeInformationA
GetDriveTypeA
GetLogicalDriveStringsA
CopyFileA
GetLastError
SetFileAttributesA
ReleaseMutex
WaitForSingleObject
CreateMutexA
LCMapStringW
LCMapStringA
SetEndOfFile
GetSystemInfo
LoadResource
GetOEMCP
GetACP
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
GetCPInfo
InitializeCriticalSection
VirtualQuery
InterlockedExchange
FlushFileBuffers
SetStdHandle
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
LockResource
CreateFileA
WriteFile
CloseHandle
FreeResource
LoadLibraryA
GetProcAddress
FreeLibrary
DeleteFileA
VirtualProtect
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapFree
HeapAlloc
ExitProcess
EnterCriticalSection
LeaveCriticalSection
ReadFile
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
DeleteCriticalSection
TlsAlloc
SetLastError
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
RtlUnwind
HeapReAlloc
TerminateProcess
GetCurrentProcess
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW

user32

RegisterWindowMessageA
CharToOemA
GetMessageA
LoadIconA
LoadCursorA
GetSysColor
RegisterClassA
DialogBoxParamA
CreateDialogParamA
InvalidateRect
GetClientRect
SetWindowTextA
SetFocus
DefWindowProcA
PostQuitMessage
CreateWindowExA
ShowWindow
UpdateWindow
SetWindowLongA
EndDialog
OemToCharA
GetParent
GetDesktopWindow
GetWindowRect
MoveWindow
DestroyWindow
DispatchMessageA
PeekMessageA
TranslateMessage
GetDlgItem
SendMessageA
MessageBoxA
GetDC
ReleaseDC

gdi32

DeleteObject
GetStockObject
SelectObject
Rectangle
SetBkMode
GetDeviceCaps
CreateFontA
CreateSolidBrush

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 900KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 216KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c47125b9d68243dfc7ea80e615c7e09

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

advapi32

Sections

.text Size: 76KB - Virtual size: 72KB

.rdata Size: 44KB - Virtual size: 43KB

.data Size: 8KB - Virtual size: 900KB

.rsrc Size: 216KB - Virtual size: 212KB

.text
Size: 76KB - Virtual size: 72KB

.rdata
Size: 44KB - Virtual size: 43KB

.data
Size: 8KB - Virtual size: 900KB

.rsrc
Size: 216KB - Virtual size: 212KB