433b7c79495522fe267973518d927a8a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

433b7c79495522fe267973518d927a8a_JaffaCakes118
Size

187KB
MD5

433b7c79495522fe267973518d927a8a
SHA1

d91a59be9d095aea079ab0c8b749a98b5cdaad7d
SHA256

4539dbba48aff1c81f164d8ead661e88407f1ca1235aaa61750d4f00fdbb8059
SHA512

9cad508ab56f6955f81fa358e2c5869646f3fa8753c0c7a35129d1250ef4d0185c0137aa28cf10a010bb49eed0cd0aa40f2dd37567e8111345ea055925ae6192
SSDEEP

3072:JdJYzF5p4zt3XkMwR1DOPrnhovymcKAmlG33j2qYw7xrd0XDrCXb:JdJoGdQyjh2ygG3z2qYqVd0z2L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
433b7c79495522fe267973518d927a8a_JaffaCakes118

Files

433b7c79495522fe267973518d927a8a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a94a6c8edafae8e7075e00877a82ab47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenEventA
IsDebuggerPresent
FatalAppExitW
lstrcpy
WaitForMultipleObjects
OpenMutexA
GetDateFormatA
GetProcAddress
GetModuleHandleA
GetShortPathNameW
GetDiskFreeSpaceW

user32

InsertMenuW
EnumDesktopsW
GetWindowRect
MessageBoxIndirectW
ClientToScreen
wsprintfW
UpdateWindow
GetClassInfoA
GetMenuItemRect
GetClassInfoW
IsIconic
RegisterWindowMessageA
CheckMenuRadioItem
GetSysColor
GetCursorPos
wsprintfA
IsDlgButtonChecked
UpdateLayeredWindow
GetCapture
SetCapture
GetKeyState
EnumChildWindows
IsWindow
SendDlgItemMessageW
ArrangeIconicWindows
SetWindowTextW
ShowCursor
RegisterClassA
CharPrevA
EnumDesktopWindows
CreateWindowExA
DefWindowProcW
GetDC
LoadIconA
MonitorFromPoint
UpdateWindow
CheckDlgButton
CallWindowProcA
DefWindowProcA
wvsprintfW
CreateWindowExA
SetWindowLongW
CallWindowProcW
MessageBoxW
GetCaretPos
ShowWindow
GetKeyboardLayout

gdi32

CreateScalableFontResourceW
CreateICW
GetTextColor
ExtCreateRegion
GetEnhMetaFilePaletteEntries
PolyBezierTo
DrawEscape
BeginPath
GetBitmapBits
AddFontResourceA
GetClipRgn
ArcTo

advapi32

RegOpenKeyExW
RegEnumValueW
RegQueryValueA
RegOpenKeyExA
RegOpenKeyA
RegFlushKey
RegCreateKeyExW

shlwapi

PathIsRelativeW
PathRelativePathToW
SHIsLowMemoryMachine
StrFormatByteSizeW
SHRegSetUSValueW
SHRegGetUSValueW
StrCmpIW
PathIsUNCServerShareA
PathIsSameRootW
PathIsUNCA
StrRetToBufA
SHDeleteOrphanKeyW
PathMatchSpecW
SHQueryValueExW
PathRemoveBlanksW

comctl32

CreateToolbarEx
FlatSB_SetScrollRange
ShowHideMenuCtl
CreateStatusWindowW
DestroyPropertySheetPage
ImageList_Destroy
MenuHelp
ImageList_GetIcon

Sections

.mHBr
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.XLPcml
Size: 2KB - Virtual size: 449KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.GRc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.c
Size: 4KB - Virtual size: 489KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 138KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uf
Size: 3KB - Virtual size: 354KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 790B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a94a6c8edafae8e7075e00877a82ab47

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shlwapi

comctl32

Sections

.mHBr Size: 12KB - Virtual size: 12KB

.XLPcml Size: 2KB - Virtual size: 449KB

.GRc Size: 3KB - Virtual size: 4KB

.c Size: 4KB - Virtual size: 489KB

.data Size: 138KB - Virtual size: 142KB

.uf Size: 3KB - Virtual size: 354KB

.rsrc Size: 42KB - Virtual size: 42KB

.reloc Size: 1024B - Virtual size: 790B

.mHBr
Size: 12KB - Virtual size: 12KB

.XLPcml
Size: 2KB - Virtual size: 449KB

.GRc
Size: 3KB - Virtual size: 4KB

.c
Size: 4KB - Virtual size: 489KB

.data
Size: 138KB - Virtual size: 142KB

.uf
Size: 3KB - Virtual size: 354KB

.rsrc
Size: 42KB - Virtual size: 42KB

.reloc
Size: 1024B - Virtual size: 790B