246986a369807ec8938ae6a6e92e0dcf_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

246986a369807ec8938ae6a6e92e0dcf_JaffaCakes118
Size

500KB
MD5

246986a369807ec8938ae6a6e92e0dcf
SHA1

9eef35b875f7f654f40cd9ba7e8aaec769062632
SHA256

4569a630db537f33b99f3fcc8ddec5d72a7c175881571a14bee584c355d91f19
SHA512

9c51263745a2a3b8bdce891f4de9f08407c6568576b60010b47fa25b6aa22e6dc9dfcbdffc0cc2cc4b10c162a1da71e66eb08afda581dad0ce1b7cf10d63cb18
SSDEEP

12288:Z02d0n67VlQmwagdoJiN7kw8e4lJX9BWAVY9dp/9IySA45:Z02On67VlOasoJiNwA8dr8PNo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
246986a369807ec8938ae6a6e92e0dcf_JaffaCakes118

Files

246986a369807ec8938ae6a6e92e0dcf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a645ef85a41bd096b18e4abcb908b4bc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetWindowExtEx
GetTextMetricsW
PolyPolyline
GetBkMode
EndDoc
CreateDIBSection
SetSystemPaletteUse
ExcludeClipRect
CombineRgn
CreatePen
ExtFloodFill
ModifyWorldTransform
GetGraphicsMode
StretchBlt
BitBlt
GetGlyphOutlineA
GetObjectA
GetTextExtentPointW
GetOutlineTextMetricsA

shell32

SHChangeNotify
SHGetSpecialFolderPathA

user32

CascadeWindows
LoadCursorFromFileA
DdeQueryConvInfo
RegisterClassA
EnumPropsW
GetMenuItemID
GetWindowTextLengthW
SetParent
UnloadKeyboardLayout
DrawTextW
GetMenu
RegisterClassExA
GetClipboardViewer
CharToOemA
GetMessageA
GetDlgItem
SetMessageExtraInfo
DlgDirListComboBoxA
GetMenuInfo
TileChildWindows
SetWindowsHookExW
WindowFromDC
MsgWaitForMultipleObjectsEx
SetLastErrorEx

kernel32

SetHandleCount
GetTickCount
GetTempFileNameA
FreeLibrary
MultiByteToWideChar
GetCommandLineA
HeapSize
GetACP
FreeEnvironmentStringsW
GetFileType
QueryPerformanceCounter
GetConsoleOutputCP
HeapAlloc
GetEnvironmentStrings
Sleep
GetStringTypeA
SetEnvironmentVariableA
GetCurrentThreadId
HeapReAlloc
ReadConsoleOutputAttribute
WriteConsoleW
LCMapStringA
ExitProcess
VirtualAlloc
IsDebuggerPresent
WideCharToMultiByte
CreateMutexA
GetUserDefaultLCID
InitializeCriticalSection
TlsSetValue
LCMapStringW
EnumSystemLocalesA
CompareStringW
DeleteCriticalSection
DeleteFiber
CreateFileA
GetModuleFileNameA
SetLastError
SetConsoleCursorInfo
EnterCriticalSection
GetVersionExA
GetCurrentThread
VirtualQuery
FreeEnvironmentStringsA
GetTimeFormatA
GetProcessHeap
SetConsoleCtrlHandler
HeapFree
InterlockedExchange
InterlockedDecrement
CompareStringA
GetProcAddress
UnhandledExceptionFilter
GetStringTypeW
WriteFile
GetFileAttributesW
HeapCreate
GetStdHandle
IsValidCodePage
TerminateProcess
lstrlenA
RtlUnwind
GetLocaleInfoA
SetUnhandledExceptionFilter
MoveFileW
GetModuleHandleA
GetCurrentProcessId
SetFilePointer
LeaveCriticalSection
InterlockedIncrement
OpenMutexA
IsValidLocale
FlushFileBuffers
GetSystemTimeAsFileTime
LoadLibraryA
GetConsoleMode
GetCurrentProcess
VirtualFree
WriteConsoleA
HeapDestroy
GetTimeZoneInformation
TlsAlloc
ReadFile
ExitThread
CommConfigDialogW
TlsFree
GetCPInfo
GetLocaleInfoW
SetStdHandle
GetOEMCP
GetConsoleCP
GetEnvironmentStringsW
GlobalFix
TlsGetValue
GetLastError
GetAtomNameW
GetStartupInfoA
CloseHandle
GetDateFormatA
FindAtomA

comdlg32

ReplaceTextA
LoadAlterBitmap
FindTextA

comctl32

InitCommonControlsEx

Sections

.text
Size: 163KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 316KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a645ef85a41bd096b18e4abcb908b4bc

Headers

File Characteristics

Imports

gdi32

shell32

user32

kernel32

comdlg32

comctl32

Sections

.text Size: 163KB - Virtual size: 162KB

.rdata Size: 10KB - Virtual size: 35KB

.data Size: 316KB - Virtual size: 315KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 163KB - Virtual size: 162KB

.rdata
Size: 10KB - Virtual size: 35KB

.data
Size: 316KB - Virtual size: 315KB

.rsrc
Size: 9KB - Virtual size: 9KB