443a3f44989fc394a584b34c53848a98_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

443a3f44989fc394a584b34c53848a98_JaffaCakes118
Size

340KB
MD5

443a3f44989fc394a584b34c53848a98
SHA1

38107c52ceaac2d1e382984b30814803205cbd38
SHA256

8fa23e42d18905f7191e9cd4e252ce56613eae4e4ad975a21e6a7511e60e1567
SHA512

5b2377857241cb5845b65d0a8825e64e565c4747b6523d3f08a03d2a212033e87c70c2524e1cee9b484fc84ad19a7d758067c4fcde32d3b9afc2d33ace3f2498
SSDEEP

6144:xyaooA99c5Z+QRCakbnt73BBhYENURgaGWDa:4o892+QRCaQt7x3WRfGs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
443a3f44989fc394a584b34c53848a98_JaffaCakes118

Files

443a3f44989fc394a584b34c53848a98_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2c05923a772c74f10bd996d927ce7815

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx
ImageList_SetIconSize
CreateStatusWindow

user32

RegisterClassA
GetForegroundWindow
GetWindowModuleFileNameA
MessageBoxA
ShowWindow
IsDialogMessage
SetClassLongW
DdeAccessData
DdeReconnect
IsCharUpperW
MapVirtualKeyA
RegisterClassExA
CreateWindowExA
InsertMenuItemA
GetTabbedTextExtentA
EnumPropsA
ShowOwnedPopups
GetCursorPos
GetInputState
IsIconic
DdeAbandonTransaction
GetUpdateRgn
DefWindowProcA
LoadMenuA
GetWindowModuleFileNameW
DestroyWindow
ShowScrollBar
VkKeyScanW
GetDoubleClickTime

kernel32

Sleep
TlsAlloc
GetEnvironmentStrings
InitializeCriticalSectionAndSpinCount
WriteConsoleW
CreateDirectoryExW
GetFileType
CreateToolhelp32Snapshot
SetConsoleMode
SetThreadIdealProcessor
GetCurrentProcessId
GetConsoleMode
GetConsoleOutputCP
ReadFile
GetOEMCP
GetStartupInfoA
IsValidLocale
GetModuleFileNameA
EnumSystemLocalesA
SetHandleCount
SetLastError
HeapFree
lstrcmpi
CompareFileTime
UnlockFileEx
HeapAlloc
CompareStringA
LCMapStringW
SetConsoleTextAttribute
CompareStringW
IsBadReadPtr
LeaveCriticalSection
InterlockedIncrement
GetTickCount
TlsGetValue
LCMapStringA
CreateDirectoryA
UnhandledExceptionFilter
IsDebuggerPresent
SetThreadLocale
HeapReAlloc
GetUserDefaultLCID
InterlockedExchange
CreateFileA
CreateMutexA
HeapDestroy
SetStdHandle
HeapSize
GetDateFormatA
InterlockedDecrement
GetCommandLineA
GetACP
VirtualAlloc
GetStdHandle
GetCurrentThread
CloseHandle
VirtualFree
GetModuleHandleW
GetProfileSectionA
DeleteCriticalSection
FreeLibrary
TlsFree
FreeEnvironmentStringsA
GetStringTypeW
FlushFileBuffers
LoadLibraryExA
TlsSetValue
FreeEnvironmentStringsW
LoadLibraryA
GetStringTypeA
GetEnvironmentStringsW
SetFilePointer
WriteConsoleA
WritePrivateProfileSectionW
SetEnvironmentVariableA
EnumCalendarInfoA
RtlUnwind
ExitProcess
GetTimeZoneInformation
WriteFile
OpenMutexA
OpenEventA
EnterCriticalSection
GetCurrentProcess
FillConsoleOutputCharacterW
GetLocaleInfoW
GetLocaleInfoA
GetConsoleCP
GetAtomNameA
IsValidCodePage
MultiByteToWideChar
GetLastError
DeleteAtom
WideCharToMultiByte
SetWaitableTimer
VirtualQuery
TransmitCommChar
QueryPerformanceCounter
TerminateProcess
GetAtomNameW
HeapCreate
GetProcAddress
GetModuleHandleA
GetCPInfo
SetConsoleCtrlHandler
LoadLibraryW
GetTimeFormatW
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetTimeFormatA
SuspendThread
GetCurrentThreadId

advapi32

RegSetKeySecurity
RegOpenKeyW
LookupAccountNameW
RegOpenKeyExW
RegSaveKeyA
InitializeSecurityDescriptor
LookupPrivilegeDisplayNameA

Sections

.text
Size: 148KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c05923a772c74f10bd996d927ce7815

Headers

File Characteristics

Imports

comctl32

user32

kernel32

advapi32

Sections

.text Size: 148KB - Virtual size: 144KB

.rdata Size: 76KB - Virtual size: 72KB

.data Size: 96KB - Virtual size: 105KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 148KB - Virtual size: 144KB

.rdata
Size: 76KB - Virtual size: 72KB

.data
Size: 96KB - Virtual size: 105KB

.rsrc
Size: 16KB - Virtual size: 15KB