3652cd8912d972785b2cc0ccf2c51c0f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3652cd8912d972785b2cc0ccf2c51c0f_JaffaCakes118
Size

95KB
MD5

3652cd8912d972785b2cc0ccf2c51c0f
SHA1

d44f0f5653d8b3ac02d3625a3c0a43f4d7dfefad
SHA256

0b0ca3d7487734b14892c60f0e4b8fc5c74da97eaccccdf6d62395a3908483a9
SHA512

8aebc169c21055b6592d6c8cac4e5af1e383823a9578a2db8407a99ac3fddb9bcca4eb33599ee95547b3f4907450ad401683214cf5b8149f90f739c1335f0165
SSDEEP

1536:ZXQoB0z6k+MOoXNjgxvj2xzgIn4NWZnYhAmEOxtghQEwAmkvrZL1NLBu5dzvYb0y:ZXXB0zwoXNjW7Px84EOx4v9mkzZZNLca

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3652cd8912d972785b2cc0ccf2c51c0f_JaffaCakes118

Files

3652cd8912d972785b2cc0ccf2c51c0f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

64d09c9fe78ad9096bf21b88ff016e53

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueW
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteKeyA
RegSetValueExW
RegOpenKeyExA
CryptDestroyHash
RegQueryInfoKeyW
RegQueryValueExA

kernel32

WaitForSingleObject
GlobalUnlock
EnumTimeFormatsW
GetUserDefaultLCID
GetVersionExA
WideCharToMultiByte
GetStdHandle
GetModuleFileNameW
CreateThread
FindFirstFileW
CreateFileMappingA
GlobalAlloc
AddAtomW
TlsFree
VirtualAlloc
lstrcpyA
HeapDestroy
GetSystemTimeAsFileTime
TlsGetValue
LCMapStringW
lstrcmpiA
LoadLibraryA
GetStartupInfoA
FindClose
HeapReAlloc
LocalFree
FindNextFileW
MapViewOfFile
DeleteAtom
TlsAlloc
GetFileSize
CompareFileTime
LCMapStringA
CloseHandle
LoadLibraryExW
GetLocaleInfoA
DeleteCriticalSection
lstrlenW
GetLastError
LockResource
InterlockedIncrement
GetTickCount
FindAtomW
DuplicateHandle
InterlockedDecrement
EnterCriticalSection
InitializeCriticalSection
EnumSystemCodePagesA
GetModuleHandleW
RaiseException
IsDBCSLeadByte
HeapAlloc
GetACP
GetFileAttributesExW
GetFileAttributesW
GetSystemTime
GetSystemDefaultLCID
LoadResource
OutputDebugStringW
lstrlenA
HeapSize
CreateProcessW
FreeLibrary
GetEnvironmentVariableA
GetProcAddress
IsDebuggerPresent
GetModuleFileNameA
GetCurrentThreadId
LoadLibraryW
MulDiv
ReleaseMutex
GetModuleHandleA
CreateDirectoryW
FlushFileBuffers
LoadLibraryExA
CreateMutexA
ExitProcess
MultiByteToWideChar
FindResourceA
CreateEventA
FreeResource
ReadFile
TlsSetValue
CopyFileW
GetFileAttributesA
SystemTimeToFileTime
CreateFileMappingW
GetVersion
WriteFile
Sleep
GetThreadLocale
CreateFileW
GetUserDefaultUILanguage
MoveFileW
SetUnhandledExceptionFilter
UnmapViewOfFile
GlobalLock
SizeofResource
UnhandledExceptionFilter
GlobalFree
FindResourceExA
LeaveCriticalSection
GetCurrentProcess
HeapFree
GetProcessHeap
InterlockedExchange
lstrcpynW
SetEvent
TerminateProcess
CreateProcessA
GetCurrentProcessId

gdi32

GetObjectA
DeleteObject
CreateCompatibleDC
BitBlt
RealizePalette
SetStretchBltMode

user32

GetDC
MessageBoxA
GetWindowLongA
LoadIconA
DefWindowProcA
UnregisterClassA
UpdateWindow
DrawTextW
EndPaint
GetDesktopWindow
CharNextA
CharNextW
BeginPaint
RegisterClassA
DestroyWindow
SetWindowLongA
ReleaseDC
CreateWindowExA
SetForegroundWindow
EnumDisplayMonitors
LoadBitmapA
LoadImageA
GetSystemMetrics
MessageBoxW
SystemParametersInfoA
LoadStringW

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

64d09c9fe78ad9096bf21b88ff016e53

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

kernel32

gdi32

user32

Sections

.text Size: 57KB - Virtual size: 57KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 30KB - Virtual size: 29KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 57KB - Virtual size: 57KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 30KB - Virtual size: 29KB

.rsrc
Size: 1KB - Virtual size: 1KB