45f46b553047a44ad13b0ee59a5168d5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

45f46b553047a44ad13b0ee59a5168d5_JaffaCakes118
Size

364KB
MD5

45f46b553047a44ad13b0ee59a5168d5
SHA1

149617ee8856b503dbafb4e20b2faf758f76a82b
SHA256

8ade69b3d203da4a9c6b2879488c92f3234bdc65d31f4faad5eff92e09d4e1e4
SHA512

bc9329700f4ee7975f66ea2603454d6c9b7e377fab9240aff9ed158c35e6520f9ad63135bbb8038119c1d6f0f107ee82543c8bc8580f3e106bdad6247d8887ef
SSDEEP

6144:+gzQCfuzjDzAj8kICA18bdbzTiu9EloHU3dssoy3NVIAB:+g0CojDzbkPTT9mZb3NP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45f46b553047a44ad13b0ee59a5168d5_JaffaCakes118

Files

45f46b553047a44ad13b0ee59a5168d5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

756309e5b31b7253e6c293d424153d1e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
WriteFile
HeapAlloc
HeapReAlloc
HeapDestroy
EnterCriticalSection
SetLastError
GetACP
SetSystemTime
GetThreadPriority
GetStdHandle
SuspendThread
GetStartupInfoA
HeapCreate
lstrcmpiA
FreeEnvironmentStringsA
GetModuleFileNameW
GetCommandLineW
GetStringTypeA
VirtualQuery
HeapSize
LocalFlags
WideCharToMultiByte
DeleteCriticalSection
lstrlen
GetLocaleInfoA
CompareStringA
GetStringTypeW
CreateMutexA
IsValidCodePage
FreeLibrary
FlushFileBuffers
InterlockedIncrement
OpenMutexA
lstrcatA
GetDateFormatW
UnhandledExceptionFilter
TlsFree
LeaveCriticalSection
FreeEnvironmentStringsW
LoadLibraryW
GetTickCount
ExitProcess
MultiByteToWideChar
ReadConsoleOutputCharacterA
GetVersionExA
TlsSetValue
IsValidLocale
SetFilePointer
SetEnvironmentVariableA
TerminateProcess
GetOEMCP
SetConsoleWindowInfo
GetCurrentProcess
FormatMessageA
GetTimeZoneInformation
ReadFile
GetFileType
VirtualProtect
TlsGetValue
GetEnvironmentStringsW
GetCurrentThread
TlsAlloc
VirtualAllocEx
InitializeCriticalSection
GetVolumeInformationW
GetTimeFormatA
GetDateFormatA
GetPrivateProfileSectionNamesA
GetPrivateProfileIntW
FileTimeToSystemTime
GetStartupInfoW
GetSystemInfo
LockFileEx
GetCurrentThreadId
LoadLibraryA
CompareStringW
GetLastError
LoadResource
GetSystemTimeAsFileTime
LCMapStringA
GetProcAddress
RemoveDirectoryA
GetFileAttributesA
InterlockedExchange
SetFileTime
GetCommandLineA
SetStdHandle
GetModuleFileNameA
GetFileTime
GetCurrentProcessId
QueryPerformanceCounter
EnumSystemLocalesA
GetCPInfo
TransmitCommChar
VirtualAlloc
RtlUnwind
CloseHandle
IsBadWritePtr
LCMapStringW
CreateThread
VirtualFree
GetLocalTime
GetEnvironmentStrings
WriteFileEx
lstrlenA
WaitForSingleObject
GetUserDefaultLCID
GetLocaleInfoW
GetModuleHandleA
SetHandleCount
GetUserDefaultLangID

comctl32

CreateToolbar
CreateMappedBitmap
DrawStatusText
DrawInsert
GetEffectiveClientRect
ImageList_DragMove
ImageList_Remove
ImageList_Write
CreateToolbarEx
ImageList_GetImageRect
ImageList_GetBkColor
ImageList_Destroy
ImageList_Draw
ImageList_Create
ImageList_SetBkColor
CreateUpDownControl
ImageList_SetOverlayImage
InitCommonControlsEx
ImageList_DragEnter
ImageList_DrawEx
DrawStatusTextW
ImageList_GetFlags
ImageList_LoadImage
DestroyPropertySheetPage
ImageList_SetFlags

user32

UnregisterClassA
ToUnicodeEx
CloseClipboard
WindowFromPoint
GetClipboardData
GetGuiResources
ChangeDisplaySettingsW
SetWindowsHookExW
ImpersonateDdeClientWindow
MessageBoxExW
LookupIconIdFromDirectoryEx
ShowWindow
SetRect
GetTabbedTextExtentW
GrayStringA
CreateWindowExA
RegisterClassExA
MapVirtualKeyW
MessageBoxA
LookupIconIdFromDirectory
GetMenuItemInfoA
SetPropW
GetClassLongA
CharNextW
RegisterClassA
DdeCreateStringHandleA
TranslateAcceleratorW
DestroyWindow
RedrawWindow
GetMenu
BeginDeferWindowPos
CheckDlgButton
EditWndProc
SetCursor
DefWindowProcW
GetKeyboardType
CharNextExA
EndMenu
ReuseDDElParam
SetParent
DdeCmpStringHandles

Sections

.text
Size: 140KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

756309e5b31b7253e6c293d424153d1e

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 140KB - Virtual size: 137KB

.rdata Size: 76KB - Virtual size: 73KB

.data Size: 92KB - Virtual size: 98KB

.rsrc Size: 52KB - Virtual size: 51KB

.text
Size: 140KB - Virtual size: 137KB

.rdata
Size: 76KB - Virtual size: 73KB

.data
Size: 92KB - Virtual size: 98KB

.rsrc
Size: 52KB - Virtual size: 51KB