32f5a89ae27b5ef6728d381de0262629_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

32f5a89ae27b5ef6728d381de0262629_JaffaCakes118
Size

544KB
MD5

32f5a89ae27b5ef6728d381de0262629
SHA1

857253e0bbcd98a81bebdebfd46227f8347bed07
SHA256

ddee18379bb210f57105076abab81d3cf74de5555e9f3d58a7b6e9ef2ea901d0
SHA512

4645e07ceb8572b55d74722dec4e7b50f07670c45370f5ef550f28d4af52df66f9c31cbab69775ae24854d7dfe2ffe4c39855b0dbb90f3b6ea26c5cdaba2cac4
SSDEEP

12288:x/TcfvMz22EPjjhKqiw1bkmu41jAA4W3um2imkZE:JKMz+/hKqHLjAAPuvimz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
32f5a89ae27b5ef6728d381de0262629_JaffaCakes118

Files

32f5a89ae27b5ef6728d381de0262629_JaffaCakes118
.exe windows:4 windows x86 arch:x86

be531eefac448be309b60ca504b68828

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassA
IsCharLowerA
GetWindowTextW
SystemParametersInfoW
RegisterClassExA
TileWindows

gdi32

EnumICMProfilesW
ResizePalette
GetPixelFormat
DrawEscape
GetTextExtentExPointA
EnumObjects
PatBlt
TextOutA
CheckColorsInGamut
GetEnhMetaFileDescriptionA
PolyDraw
SelectClipPath
GetObjectW
SetStretchBltMode
SetViewportOrgEx
GetArcDirection
SetColorAdjustment
GetViewportOrgEx
CreateFontIndirectA
CreateEllipticRgnIndirect
SetTextAlign
SetGraphicsMode
GetClipRgn
GetTextMetricsW

kernel32

DeleteCriticalSection
SetConsoleCtrlHandler
GetCurrentProcess
HeapSize
ExitProcess
SetEnvironmentVariableA
GetStringTypeW
GetCPInfo
InterlockedExchange
IsValidLocale
SetHandleCount
GetModuleFileNameA
VirtualFree
IsDebuggerPresent
WriteConsoleW
GetStringTypeA
FreeEnvironmentStringsW
GetProcessHeap
LCMapStringA
ReleaseMutex
GetTimeZoneInformation
TlsGetValue
MultiByteToWideChar
GetTempPathA
GetVersionExA
SetLastError
EnumSystemLocalesA
WideCharToMultiByte
GetCurrentProcessId
GetDateFormatA
GetTickCount
SetFilePointer
EnterCriticalSection
GetStartupInfoA
TlsSetValue
GetEnvironmentStrings
CreateRemoteThread
FreeLibrary
GetLocaleInfoW
HeapDestroy
Sleep
HeapCreate
GetLocaleInfoA
FreeEnvironmentStringsA
TlsAlloc
lstrcpyW
SetVolumeLabelW
LeaveCriticalSection
GetModuleHandleA
GetConsoleMode
SetStdHandle
LCMapStringW
GetSystemTimeAdjustment
InitializeCriticalSection
OpenMutexA
GetEnvironmentStringsW
GetProcAddress
FreeResource
SetUnhandledExceptionFilter
GetConsoleOutputCP
GetACP
GetConsoleCP
CompareStringW
RtlUnwind
GetThreadTimes
HeapFree
HeapAlloc
TlsFree
WriteConsoleOutputCharacterW
CloseHandle
WriteFile
GetUserDefaultLCID
GetConsoleScreenBufferInfo
CreateFileA
ReadFile
LockFile
LoadLibraryA
IsValidCodePage
GetSystemTimeAsFileTime
FlushFileBuffers
VirtualAlloc
HeapReAlloc
InterlockedIncrement
UnhandledExceptionFilter
CreateMutexA
GetStdHandle
GetTimeFormatA
InterlockedDecrement
GetCurrencyFormatA
GetOEMCP
WriteConsoleA
GetCurrentThreadId
VirtualQuery
GetCommandLineA
CompareStringA
GetCurrentThread
GetFileType
GetLastError
QueryPerformanceCounter
TerminateProcess

comctl32

InitCommonControlsEx

Sections

.text
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 357KB - Virtual size: 357KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

be531eefac448be309b60ca504b68828

Headers

File Characteristics

Imports

user32

gdi32

kernel32

comctl32

Sections

.text Size: 160KB - Virtual size: 160KB

.rdata Size: 10KB - Virtual size: 23KB

.data Size: 357KB - Virtual size: 357KB

.rsrc Size: 15KB - Virtual size: 14KB

.text
Size: 160KB - Virtual size: 160KB

.rdata
Size: 10KB - Virtual size: 23KB

.data
Size: 357KB - Virtual size: 357KB

.rsrc
Size: 15KB - Virtual size: 14KB