44f98bc5e6556a6529ce07321aa89437_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

44f98bc5e6556a6529ce07321aa89437_JaffaCakes118
Size

166KB
MD5

44f98bc5e6556a6529ce07321aa89437
SHA1

f6029b9f85e9260f91b3692e925851d1d39b48c6
SHA256

0949f69557b01a89a71465d95673d15ec956a406141f28aca2c4574b60edcca6
SHA512

f40f25e41a22d469eac610aef72f3d828770af5888176d133154ba7b7c46072eb6cdd3e4983193ce26cf29324f3b4fe37a7b262d2fccdb91aacc8338b658c22d
SSDEEP

3072:JoXMttz7nAe9Tn18W4jJk1Gk8+OAn9GdzqwwmwpS2bWpLu9V2DO2z7UNdY9oXDAO:Jo8tVjAeXRx1o+j9GdyS/YQDO2zP9oXV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44f98bc5e6556a6529ce07321aa89437_JaffaCakes118

Files

44f98bc5e6556a6529ce07321aa89437_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aa9e88fcd6c3871b40ccb7867542a69c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

ole32

CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CoUninitialize
CoCreateInstance
CoInitialize

kernel32

lstrcmpA
GetCurrentProcessId
LoadResource
SetStdHandle
InterlockedExchange
TlsAlloc
GetModuleFileNameW
CreateFileA
WriteConsoleInputVDMA
WaitForSingleObject
FlushFileBuffers
GetFileAttributesW
SetFilePointer
GetConsoleCP
LockResource
SizeofResource
WriteConsoleA
GetStringTypeA
HeapReAlloc
LeaveCriticalSection
CreateFileMappingW
CloseHandle
LocalFree
GetConsoleOutputCP
Sleep
GetConsoleMode
GetProcAddress
FreeLibrary
LCMapStringA
GetFileSize
GetACP
WriteConsoleW
GetCommandLineW
WriteFile
TlsFree
GetStringTypeW
InterlockedCompareExchange
QueryPerformanceCounter
GetEnvironmentStringsW
GetProcessHandleCount
GetCurrentProcess
HeapDestroy
LoadLibraryW
VirtualFree
ExitProcess
MulDiv
GetVersionExW
GetCurrentThreadId
EnumResourceNamesA
GetThreadLocale
GetSystemTimeAsFileTime
DeleteCriticalSection
GetStartupInfoA
GetEnvironmentStrings
DeleteFileW
HeapFree
GetFileType
GetCPInfo
IsProcessorFeaturePresent
LocalAlloc
GetTickCount
GetLocaleInfoA
FindResourceW
CreateSemaphoreW
HeapCreate
GetSystemDirectoryW
GetVersion
lstrcmpiW
LoadLibraryExW
CopyFileW
GetModuleFileNameA
GetModuleHandleW
IsDebuggerPresent
GetProcessHeap
FlushInstructionCache
HeapAlloc
WideCharToMultiByte
VirtualAlloc
SetLastError
InitializeCriticalSection
GetStartupInfoW
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetOEMCP
HeapSize
SetUnhandledExceptionFilter
InterlockedDecrement
UnhandledExceptionFilter
GetDriveTypeW
lstrlenA
InterlockedIncrement
CreateFileW
RtlUnwind
GetModuleHandleA
RaiseException
ReadFile
CreateProcessW
LCMapStringW
TlsGetValue
GetLastError
WritePrivateProfileSectionW
GetStdHandle
SetHandleCount
GetVersionExA
GetCommandLineA
TlsSetValue
LoadLibraryA
lstrlenW

shell32

SHGetSpecialFolderLocation
ShellExecuteW
SHGetPathFromIDListW

user32

TranslateMessage
GetWindowTextLengthW
PeekMessageW
LoadCursorW
GetWindow
SetWindowPos
GetWindowInfo
SetDlgItemTextW
DispatchMessageW
GetDlgItem
GetDC
DestroyWindow
RegisterClassExW
SystemParametersInfoW
GetParent
SetCapture
EndPaint
BeginPaint
GetClientRect
GetClassInfoExW
GetDlgItemTextW
SetWindowTextW
MessageBoxW
MapWindowPoints
CreateWindowExW
GetWindowRect
EndDialog

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idive
Size: 1024B - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aa9e88fcd6c3871b40ccb7867542a69c

Headers

File Characteristics

Imports

oleacc

gdi32

version

ole32

kernel32

shell32

user32

Sections

.text Size: 89KB - Virtual size: 88KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 71KB - Virtual size: 70KB

.idive Size: 1024B - Virtual size: 376KB

.text
Size: 89KB - Virtual size: 88KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 71KB - Virtual size: 70KB

.idive
Size: 1024B - Virtual size: 376KB