39fb6c7e3fa229bcc47c748ac08d5c2c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

39fb6c7e3fa229bcc47c748ac08d5c2c_JaffaCakes118
Size

677KB
MD5

39fb6c7e3fa229bcc47c748ac08d5c2c
SHA1

9fe570ae102d17a299b49fbe6376034cae12d09c
SHA256

b64451186ce5d739a8eec7e99d7bfc2df85d9be129085ba818251701416c36fd
SHA512

9f6fe7c7a931ec00df166c6fcb0a7e881db007e8044586b948bbc862928a914f4e859991b4722a70e60580d827457f6797c1c1f587dd4111328522948ef7b148
SSDEEP

12288:3RgfVUmOkJleRMH3HAG2nZuxzBj5x4+P1/nsxHPAiMrpVWkjaHM:hMe6loM3AFnZujtP1/nsxv/MNVVja

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39fb6c7e3fa229bcc47c748ac08d5c2c_JaffaCakes118

Files

39fb6c7e3fa229bcc47c748ac08d5c2c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7ac5183c41c3c43786c50110853ecfad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetACP
lstrcpynA
FindNextFileW
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
GetCommandLineA
HeapSize
GetCPInfo
LockResource
GetCurrentProcessId
SizeofResource
lstrlenW
VirtualQuery
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
SetStdHandle
GetLastError
LeaveCriticalSection
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
GlobalLock
DuplicateHandle
ResetEvent
CompareStringA
FindFirstFileA
lstrcmpA
GetProcAddress
DeleteFileW
SetEvent
SetErrorMode
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
GetTickCount
QueryPerformanceCounter
FreeLibrary
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
CloseHandle
InterlockedIncrement
GetCurrentThreadId
GetLocaleInfoA
GlobalAlloc
HeapCreate
MulDiv
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
GetLocalTime
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
FlushFileBuffers
ExitProcess
IsDebuggerPresent
GetModuleFileNameW
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
GetExitCodeProcess
GetOEMCP
SetFileAttributesA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
LoadLibraryW
WideCharToMultiByte
FreeEnvironmentStringsW
ExpandEnvironmentStringsA
LocalAlloc
GetConsoleMode
GetCurrentProcess
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetProcessHeap
GetEnvironmentStrings
GetEnvironmentVariableA
RtlUnwind
LCMapStringW
VirtualFree
Sleep
VirtualAlloc
TerminateProcess
GetFullPathNameA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegCloseKey

user32

SetCursor
GetClientRect
wsprintfA
InvalidateRect
SystemParametersInfoA
GetSysColor
DialogBoxParamA
MessageBoxA
SetDlgItemTextA
LoadCursorA
ClientToScreen
GetDlgItem
SetWindowTextA
SetWindowLongA
ReleaseCapture
SetCapture
GetWindowRect
GetSystemMetrics
DefWindowProcA
KillTimer
BeginPaint
SetFocus
CreateWindowExA
RegisterClassA
IsIconic
TranslateMessage
EnableWindow
ShowWindow
GetParent
GetMessageA
DestroyWindow
DrawTextA
GetDC
PeekMessageA
EndPaint
IsWindow
SetWindowPos
PostQuitMessage

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 623KB - Virtual size: 622KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ac5183c41c3c43786c50110853ecfad

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

.text Size: 21KB - Virtual size: 21KB

.rdata Size: 623KB - Virtual size: 622KB

.data Size: 25KB - Virtual size: 28KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 21KB - Virtual size: 21KB

.rdata
Size: 623KB - Virtual size: 622KB

.data
Size: 25KB - Virtual size: 28KB

.rsrc
Size: 6KB - Virtual size: 5KB