244ce7c6c74e84df0faaa6764a2e98ea_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

244ce7c6c74e84df0faaa6764a2e98ea_JaffaCakes118
Size

3.8MB
MD5

244ce7c6c74e84df0faaa6764a2e98ea
SHA1

e020808275a664be1b3570a005e294286c4a6a37
SHA256

fe354d4d700bc2e4ee03e6e82d88a7ccb6a02808833f7fa195db06a46ebb5cd8
SHA512

999ced1eda5ea205513d2490394b96c6f99cf1526d3cec768cc16f3d78daca474142847a5c9ab2d9d3aaaf6ab0edb4aa9061ac1039742bef4b123a5b2ed9bbf9
SSDEEP

98304:ugHam4rV4jEV4xu+LEHEltnrxFlrAuCNkFt8Bw9:m6EV4xuuUEVFhAuCL+9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
244ce7c6c74e84df0faaa6764a2e98ea_JaffaCakes118

Files

244ce7c6c74e84df0faaa6764a2e98ea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

809af21684f62082b9f9d2258fce3d00

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidLocale
WaitNamedPipeA
GetHandleInformation
CreateWaitableTimerA
FillConsoleOutputCharacterA
PurgeComm
GetCurrentProcess
SystemTimeToFileTime
VirtualUnlock
GetProcessTimes
RemoveDirectoryA
FlushFileBuffers
ReadConsoleA
OpenSemaphoreW
GlobalFlags
IsDBCSLeadByteEx
EnumResourceNamesA
GetVersion
GetSystemTimeAdjustment
SwitchToFiber
EnumCalendarInfoA
VirtualQueryEx
GetCurrentProcessId
LocalAlloc
lstrcatW
InitializeCriticalSection
SetLastError
CreateDirectoryExA
EndUpdateResourceA
CreateDirectoryW
CompareStringA
FreeEnvironmentStringsA
GetWindowsDirectoryA
VirtualAllocEx
SetProcessAffinityMask
lstrcpynA
GetVolumeInformationW
GetBinaryTypeA
EnumResourceLanguagesW
PulseEvent
LoadLibraryExW
WriteConsoleOutputCharacterA
GlobalReAlloc
FindNextChangeNotification
GetACP
MoveFileW
ReadDirectoryChangesW
SetTimeZoneInformation
CreateFileW
SetupComm
FlushConsoleInputBuffer
PeekConsoleInputW
GetBinaryTypeW
GetOEMCP
GetDiskFreeSpaceExA
ReadFile
LeaveCriticalSection
SetThreadAffinityMask
lstrcmpiA
GetSystemDefaultLangID
EnumCalendarInfoW
CreateEventA
GetSystemTimeAsFileTime
FormatMessageW
QueryDosDeviceW
GetFileInformationByHandle
TryEnterCriticalSection
GlobalFindAtomW
SetFileTime
LCMapStringA
OpenMutexA
GetCommModemStatus
GetOverlappedResult
GetTapeParameters
CreateIoCompletionPort
SetProcessShutdownParameters
GetProfileStringA
GetShortPathNameA
GlobalAddAtomA
VirtualFree
ReadFileScatter
VirtualAlloc
GetFileType
SetConsoleActiveScreenBuffer
ConnectNamedPipe
LoadLibraryExA
LocalFileTimeToFileTime
SetCommMask
SetCommTimeouts
FileTimeToLocalFileTime
OutputDebugStringW
GetCommState
EnumSystemCodePagesW
lstrcmpA
GetFullPathNameA
GetEnvironmentVariableW
SetConsoleOutputCP
ExitProcess

user32

CopyRect
DrawIcon
RemovePropA
SetPropW
MonitorFromPoint
GetUserObjectSecurity
CharLowerW
DrawMenuBar
SetMessageQueue
ChangeDisplaySettingsW
ValidateRect
SetThreadDesktop
LoadImageA
mouse_event
SetScrollRange
GetDlgItemInt
GetMenuInfo
FrameRect
EnumDisplaySettingsExA
GetProcessDefaultLayout
CreatePopupMenu
BringWindowToTop
LoadKeyboardLayoutA
GetSystemMenu
IsDlgButtonChecked
CheckMenuRadioItem
SetDlgItemTextW

gdi32

GetViewportOrgEx
EnumObjects
CreateICA
SelectClipPath
StartDocA
SetRectRgn
GetBitmapBits
GetBkMode
PtInRegion
EnumEnhMetaFile
ExtCreatePen
BitBlt
CreateDCA

comdlg32

GetSaveFileNameW

advapi32

GetServiceDisplayNameA
RegDeleteKeyW
SetThreadToken
DeleteAce
PrivilegeCheck

shell32

SHGetSettings
SHLoadInProc
SHGetDesktopFolder

ole32

CoDisconnectObject
CoUninitialize
OleCreate

oleaut32

SysStringLen
VariantCopy
SysFreeString
SafeArrayRedim
SafeArrayCreate
SafeArrayGetLBound
SysAllocStringLen

shlwapi

StrCatBuffA
PathIsPrefixW
PathAppendW

Sections

.text
Size: 4KB - Virtual size: 223KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3.5MB - Virtual size: 3.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

809af21684f62082b9f9d2258fce3d00

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

Sections

.text Size: 4KB - Virtual size: 223KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 3.5MB - Virtual size: 3.5MB

.rsrc Size: 19KB - Virtual size: 18KB

.text
Size: 4KB - Virtual size: 223KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 3.5MB - Virtual size: 3.5MB

.rsrc
Size: 19KB - Virtual size: 18KB