2ce9d15f7b43b0dec6c3935de0743113_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2ce9d15f7b43b0dec6c3935de0743113_JaffaCakes118
Size

94KB
MD5

2ce9d15f7b43b0dec6c3935de0743113
SHA1

50cf913875f1447f894cf795a549df3c84f8f402
SHA256

d3e04348f412615e23ad0aebfee1b4338f5edf99776bdedf08fbb0462868ef91
SHA512

f06a98af22ecd806604f32a6b8584b918997b021ca1b91ab86dff9e3d9a7cdfb65aa8ab73edfd5cef5b98949cd6bd84a3925f3f1b5078b34bce7ee6c866ae42e
SSDEEP

1536:Ga/ySwKA8SE/+PN7A80iTubsESYPgFYtJEpTC2WbJCH7lkJJtn3gOt0:Ga/ySwK1SUYuXuYP8abNJtn3gOt0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ce9d15f7b43b0dec6c3935de0743113_JaffaCakes118

Files

2ce9d15f7b43b0dec6c3935de0743113_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4864beef2287df1a1aba41c566ec3cf6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
HeapSize
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
CreateThread
FlushFileBuffers
SetStdHandle
GetConsoleMode
GetConsoleCP
SetFilePointer
LoadLibraryA
InitializeCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
lstrlenW
CreateMutexW
GetLastError
GetTickCount
Sleep
ExitProcess
GetShortPathNameW
GetSystemDirectoryW
CreateProcessW
GetSystemTime
SystemTimeToFileTime
GetModuleFileNameA
DeleteFileA
GetShortPathNameA
SearchPathA
ReadFile
WinExec
GetModuleHandleW
GetModuleFileNameW
CreateFileW
WriteFile
CreateFileA
CloseHandle
FreeEnvironmentStringsA
LCMapStringW
WideCharToMultiByte
LCMapStringA
MultiByteToWideChar
RaiseException
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetStartupInfoA
GetFileType
HeapAlloc
HeapFree
RtlUnwind
GetVersionExA
GetProcessHeap
GetStartupInfoW
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
VirtualAlloc
HeapReAlloc
HeapDestroy
HeapCreate
GetProcAddress
GetModuleHandleA
GetStdHandle
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
SetHandleCount

user32

CharNextW
MoveWindow
IsWindowVisible
SetWindowTextA
DestroyWindow
PostMessageW
GetWindowTextA
LoadCursorW
RegisterClassExW
GetMessageW
TranslateMessage
UnregisterClassW
DefWindowProcW
KillTimer
BeginPaint
EndPaint
MessageBoxW
GetDC
PostQuitMessage
GetWindowLongW
CreateWindowExW
SetLayeredWindowAttributes
ShowWindow
UpdateWindow
SetTimer
RegisterHotKey
GetClientRect
RedrawWindow
DrawTextW
DrawTextA
GetDesktopWindow
GetWindowRect
ReleaseDC
DispatchMessageW

gdi32

MoveToEx
LineTo
SetBkMode
SetTextColor
CreateFontW
CreatePen
CreateSolidBrush
Rectangle
DeleteObject
SelectObject
SetDIBitsToDevice

advapi32

RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCloseKey
RegCreateKeyExW

setupapi

SetupDiSetClassInstallParamsW
SetupDiCallClassInstaller
SetupDiGetDeviceInstallParamsW
SetupDiClassGuidsFromNameExW
SetupDiGetClassDevsExW
SetupDiOpenDeviceInfoW
SetupDiGetDeviceInfoListDetailW
CM_Get_Device_ID_ExW
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyW
SetupDiCreateDeviceInfoListExW

Sections

.text
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.shr
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4864beef2287df1a1aba41c566ec3cf6

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

setupapi

Sections

.text Size: 66KB - Virtual size: 66KB

.rdata Size: 19KB - Virtual size: 18KB

.data Size: 6KB - Virtual size: 13KB

.shr Size: 512B - Virtual size: 1B

.rsrc Size: 512B - Virtual size: 16B

.text
Size: 66KB - Virtual size: 66KB

.rdata
Size: 19KB - Virtual size: 18KB

.data
Size: 6KB - Virtual size: 13KB

.shr
Size: 512B - Virtual size: 1B

.rsrc
Size: 512B - Virtual size: 16B