31a95c7faacfa7e15b16b520747e2ea9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

31a95c7faacfa7e15b16b520747e2ea9_JaffaCakes118
Size

94KB
MD5

31a95c7faacfa7e15b16b520747e2ea9
SHA1

ab3f36577334a84ae0d7b1c3308bf26afd08ef08
SHA256

ce42614374cde9687eb0f4f66c3d7fdf6bba34a42519c2e2871a165e229a8185
SHA512

8f92fb1855eef234f7bd4b9bb3948ff81f1aa92854592acf5e275cb04d862ded2fe5ecf7b388ddfef1f95f469a3e0804ac638f6aedfc98089aff03db1c793262
SSDEEP

1536:IB6qtY+PdLbGSNyCIGE+6n9pHrGgcCLs+2CeH+VmWWQidtTvuWBYYb1kuFJIdTRX:IMqtNPdLaCTINnnL9rLsdCiPn7buhcJG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31a95c7faacfa7e15b16b520747e2ea9_JaffaCakes118

Files

31a95c7faacfa7e15b16b520747e2ea9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

63c77de1ee0d16e83a363056684f0003

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleacc

AccessibleObjectFromWindow

ole32

CoCreateInstance
CoInitialize
CoUninitialize

gdi32

SetMagicColors

user32

SetWindowTextW
SetWindowPos
SetWindowLongW
SetThreadDesktop
SetSysColors
SetDlgItemTextW
SendMessageTimeoutW
ReleaseDC
OpenInputDesktop
LoadStringW
GetWindowRect
SystemParametersInfoW
GetUserObjectInformationW
GetThreadDesktop
GetSystemMetrics
GetSysColor
GetDlgItem
GetDesktopWindow
GetDC
FindWindowExW
EndDialog
EnableWindow
DialogBoxParamW
CloseDesktop
GetWindowLongW

advapi32

RegQueryValueExW
RegOpenKeyW
RegDeleteValueW
RegCreateKeyW
RegCloseKey
RegSetValueExW

kernel32

VirtualQuery
VirtualProtect
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
WideCharToMultiByte
SetUnhandledExceptionFilter
SetHandleCount
RtlUnwind
QueryPerformanceCounter
MultiByteToWideChar
TerminateProcess
LocalAlloc
LoadLibraryW
LoadLibraryA
LCMapStringW
LCMapStringA
InterlockedExchange
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
HeapAlloc
GetVersionExA
GetTickCount
WriteFile
lstrcatW
lstrcmpiW
lstrcpyW
lstrlenW
LocalFree
GetCurrentProcessId
ExitProcess
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcess
GetCurrentThreadId
GetEnvironmentStringsA
GetEnvironmentStringsW
GetFileType
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStartupInfoA
GetStartupInfoW
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime

Exports

Exports

EnumCustomFunctionSettingNext
GetDeviceCount

Sections

.text
Size: 81KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63c77de1ee0d16e83a363056684f0003

Headers

File Characteristics

Imports

oleacc

ole32

gdi32

user32

advapi32

kernel32

Exports

Exports

Sections

.text Size: 81KB - Virtual size: 84KB

.data Size: 9KB - Virtual size: 12KB

.rsrc Size: 1024B - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 4KB

.text
Size: 81KB - Virtual size: 84KB

.data
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 1024B - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 4KB