46ea8216f1cd72c1b643525a50c53e02_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

46ea8216f1cd72c1b643525a50c53e02_JaffaCakes118
Size

146KB
MD5

46ea8216f1cd72c1b643525a50c53e02
SHA1

f8fdb29dfb18138a2d1dec991c84ba58b6b0c021
SHA256

f769a621ef61fb96174ba5729caabc587100da8f6e0732477fba98aa0efefc9a
SHA512

56e5a264700a3fadcd432895128312e3062bbbb64ef3055921a886e0cc07e4e1e706af08ad8e192900cc4ef2063b2f561a5034e11e2b0da9eb3c236b5632a3e7
SSDEEP

3072:z4n9ArpE+JMTl5Gu1YG3QkV+qeVYD9xtMLj:zRrpEWMTVYRkEWX8j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46ea8216f1cd72c1b643525a50c53e02_JaffaCakes118

Files

46ea8216f1cd72c1b643525a50c53e02_JaffaCakes118
.exe windows:1 windows x86 arch:x86

31942c873690a4193820db482749f346

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleMode
GetStartupInfoA
GetModuleHandleW
LeaveCriticalSection
GetThreadContext
TlsAlloc
LCMapStringW
GetSystemInfo
TerminateProcess
LCMapStringA
GetCurrentProcess
GetCurrentProcessId
GetLastError
IsBadReadPtr
IsDebuggerPresent
SetLastError
FreeEnvironmentStringsW
TerminateThread
GetCurrentThreadId
SetPriorityClass
lstrcpynA
GetNumberFormatA
GlobalAlloc
IsBadStringPtrA
InterlockedIncrement
GetModuleHandleA
lstrcmpiA
GetCommandLineW
GetProcessHeap
WriteFile
DeviceIoControl
lstrcmpA
WaitForSingleObject
RtlUnwind
EnterCriticalSection
GetOEMCP
Module32Next
SetEvent
GetCurrentDirectoryA
TlsFree
HeapAlloc
GetExitCodeThread
GetModuleFileNameA
HeapReAlloc
GetProcessWorkingSetSize
GetFileTime
lstrcpyA

msvcrt

_wexecle
_getche
_exit
__getmainargs
strtoul
_strnset
__p__commode
_snscanf
_cprintf
_iob
_read
_acmdln
iscntrl
fscanf
_inpd
putwchar
_mbsbtype
gmtime
_ismbchira
_fpieee_flt
_adj_fdiv_r
_XcptFilter
_mbsset
_adj_fdivr_m64
atoi
_mbccpy
_strdup
mktime
_mbsnbcpy
_fpclass
__setusermatherr
_mbscoll
_resetstkoflw
iswctype
_controlfp
_fstati64
_mbsupr
_atoi64
_wexeclp
_adjust_fdiv
_getws
_isatty
_adj_fdivr_m16i
strerror
exit
acos
_mbsdec
_mbsnccnt
_gmtime64
_ismbcdigit
_ismbbgraph
_ismbcl1
__p__fmode
toupper
_amsg_exit
_aligned_malloc
_stati64
_fullpath
_mbsncpy
fgetwc
_futime
_except_handler3
realloc
swscanf
_cscanf
__set_app_type
_initterm
free
memcpy
_ismbcalnum
_strrev
_wcsnicmp
towlower

user32

MsgWaitForMultipleObjects
RedrawWindow
IsDialogMessageA
GetWindowPlacement
SetScrollInfo
GetCursorPos
GetClassNameA
EnumChildWindows
GetClassLongA
TrackPopupMenuEx
SetPropA
GetMenu
CreateDialogParamA
CreateIconIndirect
GetFocus
GetUserObjectSecurity
RegisterWindowMessageA
InvalidateRect
ExitWindowsEx
GetDlgItemTextA
EmptyClipboard
DestroyIcon
CheckDlgButton
SetWindowPos
IntersectRect
ModifyMenuA
CreatePopupMenu
DefFrameProcA
CheckMenuRadioItem
ScreenToClient
ShowWindow
SetWindowTextA
LoadStringA
FindWindowExA
DefMDIChildProcA
InflateRect
DialogBoxIndirectParamA
RegisterClassA
EndDeferWindowPos
DefDlgProcA
GetKeyState
EnableWindow
TranslateAcceleratorA
GetWindow
GetParent
ScrollWindowEx
MapWindowPoints
DrawFrameControl
MessageBoxA
DispatchMessageA
GetMenuItemID
SetCapture
LoadCursorA
SetClipboardData
CloseClipboard
FillRect
DeferWindowPos
FrameRect
SendMessageA
IsZoomed
GetUpdateRgn

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 99B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

31942c873690a4193820db482749f346

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 17KB - Virtual size: 17KB

.rdata Size: 121KB - Virtual size: 121KB

.data Size: 512B - Virtual size: 99B

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 17KB - Virtual size: 17KB

.rdata
Size: 121KB - Virtual size: 121KB

.data
Size: 512B - Virtual size: 99B

.rsrc
Size: 4KB - Virtual size: 3KB