46fd9c6b97f51caf4fdd5677801b0de1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

46fd9c6b97f51caf4fdd5677801b0de1_JaffaCakes118
Size

369KB
MD5

46fd9c6b97f51caf4fdd5677801b0de1
SHA1

1d2d37a379189c509c3f20a981e81d86c4d6ff3f
SHA256

bfd12e4d158a82fe1dd5f4ba878f0b56a5ff628bfc0e9d196b31990756802888
SHA512

fc638a85b5aba538b26f16162439b9a6dee8a949f7ddea999baae5ce098ae7d2f1e282b08ada9544f3960eea211fe88b970d20b8e20035986b908572b82f008d
SSDEEP

6144:KKOQl5rltFyG3A+Qr5skviTvzBIbZp1aJhFNOEUcrxRyEmhtgV47qc341Mn0JeGc:rOQl5rfXXGO2iTv1Idp0h3OsxdPV47Jx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46fd9c6b97f51caf4fdd5677801b0de1_JaffaCakes118

Files

46fd9c6b97f51caf4fdd5677801b0de1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aab5254a49069a0fce97b02c9e65b633

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateDialogParamW
EndDialog
GetDlgItem
ScreenToClient
CharNextA
GetSystemMetrics
SendMessageW
SystemParametersInfoW
CharNextW
LoadStringW
DestroyIcon
SendDlgItemMessageW
SetDlgItemTextW
MoveWindow
ShowWindow
DialogBoxParamW
GetWindowRect
RegisterDeviceNotificationW
SetWindowTextW
WinHelpW

msvcrt

_except_handler3

iphlpapi

CreateIpNetEntry

advapi32

RegQueryValueExW
RegOpenKeyExA
RegOpenKeyExW
RegQueryValueExA
RegCloseKey

ntdll

NtAllocateVirtualMemory
LdrUnloadDll

powrprof

GetPwrCapabilities

kernel32

LocalAlloc
lstrcpynW
lstrcpyW
CreateFileW
InterlockedExchange
CloseHandle
FormatMessageW
MultiByteToWideChar
GetProcAddress
GetWindowsDirectoryW
GetModuleHandleW
GetLocaleInfoW
lstrcatW
GetModuleFileNameW
TerminateProcess
GetDateFormatW
SetUnhandledExceptionFilter
GetVersionExA
GetSystemPowerStatus
LocalFree
GetCurrentProcess
LoadLibraryW
GetModuleHandleA
DeviceIoControl
GetLastError
UnhandledExceptionFilter
lstrcmpW
DisableThreadLibraryCalls
lstrlenW

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailW
SetupDiGetClassDevsW
SetupDiEnumDeviceInterfaces

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

aab5254a49069a0fce97b02c9e65b633

Headers

File Characteristics

Imports

user32

msvcrt

iphlpapi

advapi32

ntdll

powrprof

kernel32

setupapi

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 4KB - Virtual size: 3KB

.rsrc Size: 44KB - Virtual size: 44KB

.data Size: 313KB - Virtual size: 1.2MB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 44KB - Virtual size: 44KB

.data
Size: 313KB - Virtual size: 1.2MB