259965913124518065bcfb0ddb2ad62a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

259965913124518065bcfb0ddb2ad62a_JaffaCakes118
Size

292KB
MD5

259965913124518065bcfb0ddb2ad62a
SHA1

b2f3542b24fd38ca7f2928224877c543f622f428
SHA256

28a351854577fe10e3ce2f2d56e5809d4334c5631191f43b5f13d6503eb366f8
SHA512

f3da0b6234ba8c896cdd091aff554ec4a9c2a4c0fdd3afc2a143bb6af30ecf5b4d876e8b4a38cd559d0a8aa7bb651b2ec3962a78deda2ee43bfa5df57df16845
SSDEEP

6144:9gUxc+eaycaN8p9199bKglM4TucWG0jbwROGpYB:t0caSp91bXl1T7H4gxYB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
259965913124518065bcfb0ddb2ad62a_JaffaCakes118

Files

259965913124518065bcfb0ddb2ad62a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5fdc3af7876b0cb51a85df4b506b5df0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CreateServiceA
GetTokenInformation
QueryServiceStatus
RegisterServiceCtrlHandlerA
SetSecurityDescriptorDacl
StartServiceA
StartServiceCtrlDispatcherA
UnlockServiceDatabase

kernel32

CloseHandle
ContinueDebugEvent
CopyFileA
CreateDirectoryA
CreateFileA
CreateProcessA
CreateThread
CreateToolhelp32Snapshot
DeleteCriticalSection
DisableThreadLibraryCalls
EnterCriticalSection
EnumSystemLocalesA
ExitProcess
ExpandEnvironmentStringsA
FileTimeToLocalFileTime
FindClose
FindResourceA
FreeEnvironmentStringsA
FreeLibrary
GetCPInfo
GetConsoleCP
GetConsoleOutputCP
GetCurrentProcess
GetCurrentThread
GetCurrentThreadId
GetDriveTypeA
GetFileAttributesA
GetFileSize
GetFileTime
GetFileType
GetLastError
GetLocaleInfoA
GetModuleHandleA
GetPrivateProfileStructA
GetProcAddress
GetProcessHeap
GetSystemDirectoryA
GetSystemInfo
GetSystemTime
GetTempPathA
GetVersionExA
GlobalAlloc
GlobalReAlloc
HeapAlloc
HeapCreate
HeapDestroy
HeapSize
InitializeCriticalSection
InterlockedExchange
InterlockedIncrement
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
IsValidLocale
LeaveCriticalSection
LoadLibraryExA
LoadResource
LockResource
MapViewOfFile
Module32Next
MoveFileA
MoveFileExA
MultiByteToWideChar
ReadFile
RemoveDirectoryA
ResetEvent
SetCurrentDirectoryA
SetEnvironmentVariableA
SetEvent
SetFileTime
Sleep
SystemTimeToFileTime
TlsGetValue
UnhandledExceptionFilter
UnmapViewOfFile
VirtualAlloc
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WritePrivateProfileStringA
lstrcmpA
lstrlenA

user32

CharNextA
CharPrevA
CheckMenuItem
CheckRadioButton
EndDialog
GetCapture
GetClientRect
GetDC
GetKeyState
GetMenuItemCount
GetProcessWindowStation
GetSystemMetrics
GetWindowDC
InflateRect
IsWindow
MessageBoxA
MsgWaitForMultipleObjects
ReleaseCapture
SetDlgItemTextA
SetForegroundWindow
SetMenu
SetTimer
SetWindowLongA
ShowWindow
UnregisterClassA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Sections

.text
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 232KB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

sguvg
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

kkusv
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5fdc3af7876b0cb51a85df4b506b5df0

Headers

File Characteristics

Imports

advapi32

kernel32

user32

version

Sections

.text Size: 35KB - Virtual size: 36KB

.bss Size: 232KB - Virtual size: 2.8MB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 15KB - Virtual size: 16KB

.idata Size: 3KB - Virtual size: 4KB

sguvg Size: 1KB - Virtual size: 4KB

kkusv Size: 1024B - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 35KB - Virtual size: 36KB

.bss
Size: 232KB - Virtual size: 2.8MB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 15KB - Virtual size: 16KB

.idata
Size: 3KB - Virtual size: 4KB

sguvg
Size: 1KB - Virtual size: 4KB

kkusv
Size: 1024B - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 4KB