28a4ddc903bf32e333487064832cd623_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

28a4ddc903bf32e333487064832cd623_JaffaCakes118
Size

205KB
MD5

28a4ddc903bf32e333487064832cd623
SHA1

29c8e568a648a625db08a788eaba623cfb73b4fc
SHA256

08cb7a93d35498c2742a30f21be2d6abb45fc7e38c3f6a1a8df41cc1d0081102
SHA512

92c4d3b70d4a3f0420873a4b732efba73d68240c008bec780ccb5623916931d79fb988b61b6e0835a464ef8a784ea5496ec54a35670691627a874cf427934f90
SSDEEP

6144:Cd5i/mGgduj4c/5N+NpV4tQ9altfYwfKZ:C7i/mGFN+nVglBk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28a4ddc903bf32e333487064832cd623_JaffaCakes118

Files

28a4ddc903bf32e333487064832cd623_JaffaCakes118
.exe windows:1 windows x86 arch:x86

353c5a7150c6024bf63ab21822d4e9d6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
SetStdHandle
VirtualFree
lstrcmpiA
GetStdHandle
GetLocaleInfoA
GetCurrentThread
GlobalAlloc
GetCurrentProcessId
QueryPerformanceFrequency
LeaveCriticalSection
IsDebuggerPresent
Module32First
GetComputerNameW
GetStringTypeA
GetConsoleOutputCP
LoadLibraryA
FindResourceA
HeapCreate
GetSystemDirectoryA
WriteConsoleW
TlsSetValue
GlobalLock
lstrcmpA
RtlUnwind
GlobalMemoryStatus
lstrlenW
GetCurrentThreadId
Module32Next
GetEnvironmentStrings
CreateFileMappingA
EnterCriticalSection
VirtualAlloc
CreateThread
GetProcessHeap
ExitThread
QueryPerformanceCounter
GetFileTime
lstrcpyA
WriteConsoleA
GetFileType
FindFirstFileA
UnmapViewOfFile
HeapReAlloc
DeleteCriticalSection
GetFileAttributesA
ExitProcess
GetThreadContext
SetEndOfFile
GetStringTypeW
GetCurrentDirectoryA
lstrcatA
GetTickCount
GetVersion
GetOEMCP
FreeEnvironmentStringsA
IsBadReadPtr
VirtualQueryEx
HeapFree
SetLastError
SetPriorityClass
FlushFileBuffers
GetProcessAffinityMask
IsBadStringPtrA
Sleep
GlobalReAlloc
DuplicateHandle
GlobalUnlock
GetEnvironmentVariableA
HeapAlloc
GetModuleHandleW
GetConsoleMode
LCMapStringW
WideCharToMultiByte
SetHandleCount
OpenEventA
InterlockedExchange
LocalFree
WaitForSingleObject
GetConsoleCP
FreeEnvironmentStringsW
CloseHandle
ResetEvent
SetEnvironmentVariableA
CreateToolhelp32Snapshot
GetACP
SetProcessWorkingSetSize
GetModuleHandleA
PulseEvent
SearchPathA
WaitForMultipleObjects
GetCPInfo
SetEvent
OpenProcess
ResumeThread
ReadFile
DeleteFileA
CreateProcessA
SetErrorMode
SetUnhandledExceptionFilter
lstrlenA
GetStartupInfoA
CreateEventA
GetCurrentProcess

user32

DefFrameProcA
GetSystemMetrics
FindWindowExA
FillRect
SetCapture
GetFocus
TrackPopupMenu
RedrawWindow
DrawMenuBar
TrackPopupMenuEx
DialogBoxIndirectParamA
PostQuitMessage
DefMDIChildProcA
IsIconic
CheckMenuItem
InvalidateRgn
CheckMenuRadioItem
GetWindowPlacement
GetParent
ScrollWindowEx
GetWindowRect
GetDlgItemTextA
IsDlgButtonChecked
GetMessageA
CreateDialogParamA
DeferWindowPos
DialogBoxParamA
GetUpdateRgn
GetSysColor
GetScrollInfo
DrawTextA
UpdateWindow
ChildWindowFromPoint
InsertMenuA
ModifyMenuA
AppendMenuA
ShowWindow
ReleaseCapture
GetUserObjectSecurity
OffsetRect
RegisterClassA
SetClassLongA
CreatePopupMenu
WindowFromPoint
CloseClipboard
OpenClipboard
GetClassLongA
LoadImageA
GetKeyState
LoadStringA
CreateWindowExA
IntersectRect
MsgWaitForMultipleObjects
GetDoubleClickTime
SetDlgItemTextA
InvalidateRect
LoadMenuA
EndDialog
CheckRadioButton
GetCursorPos
TranslateMessage
SetCursor
GetDlgCtrlID
CallWindowProcA
GetClassNameA
BeginDeferWindowPos
ReleaseDC
GetSubMenu
CopyRect
SetTimer
SetWindowPlacement
SetUserObjectSecurity
LoadAcceleratorsA
GetMenuItemID
EndPaint
FrameRect
InflateRect
EndDeferWindowPos
PeekMessageA
EnumChildWindows
ClientToScreen
DestroyWindow
DrawEdge
EmptyClipboard
UnionRect
ScreenToClient
GetDC
GetCapture
SetWindowTextA
RegisterWindowMessageA
IsZoomed
CreateIconIndirect
GetMenuItemCount
IsDialogMessageA
SetMenuItemInfoA
LoadIconA
BeginPaint
GetWindowLongA
MessageBoxA

msvcrt

exit
_adjust_fdiv
__getmainargs
_except_handler3
__p__commode
memcpy
__set_app_type
_acmdln
_XcptFilter
__p__fmode
_initterm
_exit
_controlfp
__setusermatherr

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

353c5a7150c6024bf63ab21822d4e9d6

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 180KB - Virtual size: 180KB

.data Size: 512B - Virtual size: 28KB

.rsrc Size: 512B - Virtual size: 164B

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 180KB - Virtual size: 180KB

.data
Size: 512B - Virtual size: 28KB

.rsrc
Size: 512B - Virtual size: 164B