47b055ca866c38c5fa4d96ebcdebdfa4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

47b055ca866c38c5fa4d96ebcdebdfa4_JaffaCakes118
Size

344KB
MD5

47b055ca866c38c5fa4d96ebcdebdfa4
SHA1

a82f9f5f03a404049b73afa544e22e4c01d119e5
SHA256

1534880ab2991be727c4f97127b0fd0df5e48a8b2c51c66ac01653696f1b7548
SHA512

54415bc0062fe111bc84ce137f3f37e9ddccb4bc1a1d41e78f683426acedf8e94608d6f3947a16ebdaffecd298d076379f499818fb28cad7d837c9973121fd97
SSDEEP

6144:v2Im+bq8D17odrjeQBqhbNIgtdOSePwIK6mZCHXtHtiAhx67SLPkeeznLyED:vHbTD18rjeQ4NNFMGX0XtHtiAH6WLp05

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47b055ca866c38c5fa4d96ebcdebdfa4_JaffaCakes118

Files

47b055ca866c38c5fa4d96ebcdebdfa4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

951eef9c54947aefe8bddba651037cd8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
WriteConsoleOutputCharacterW
IsDBCSLeadByteEx
Thread32Next
CreateSemaphoreW
SetSystemTimeAdjustment
FlushViewOfFile
HeapReAlloc
CopyFileExA
Thread32First
RequestDeviceWakeup
GetDiskFreeSpaceA
DeviceIoControl
GetCurrentThreadId
SetLocaleInfoW
EnumResourceNamesW
GetVersionExA
lstrlenA
GetBinaryTypeA
PeekConsoleInputW
GetLongPathNameW
GetPrivateProfileStringW
RemoveDirectoryA
ReadConsoleOutputCharacterA
CreateEventW
GetStartupInfoW
CreateMailslotA
GetVolumeInformationW
GetTempPathA
GetFileAttributesA
GetUserDefaultLCID
WritePrivateProfileSectionW
GetOEMCP
WriteConsoleA
GetStartupInfoA
LCMapStringW
GetFileSize
IsBadWritePtr
RaiseException
InterlockedExchange
SetConsoleTextAttribute
GlobalUnlock
FlushFileBuffers
GlobalReAlloc
GetDriveTypeW
GetDevicePowerState
GetCurrentThread
EnumTimeFormatsA
GetVersionExW
ConvertDefaultLocale
GlobalUnWire
CreateDirectoryA
IsDBCSLeadByte
QueueUserAPC
ReadConsoleInputW
GetPrivateProfileSectionA
GetProfileIntA
SetCommConfig
LocalSize
LockResource

user32

DispatchMessageA
ChangeDisplaySettingsExW
GetCaretPos
EnumDesktopsA
GetClassNameA
MessageBoxA
CreateWindowStationW
SystemParametersInfoW
CheckMenuRadioItem
GetDlgItem
CascadeWindows
SetMenuContextHelpId
IsWindowUnicode
OpenDesktopW
GetOpenClipboardWindow
IsRectEmpty
CharPrevA
GetDlgItemInt
FrameRect
GrayStringW
SetKeyboardState
ValidateRect
GetDlgItemTextA
RemoveMenu
wsprintfW
CreateCursor
DrawEdge
SetRectEmpty
ShowWindow
ScrollWindowEx
DlgDirSelectExW
SetMenuItemInfoW
GetDlgItemTextW
MessageBoxIndirectW
GetNextDlgGroupItem
LoadCursorFromFileA
ValidateRgn
GetKeyNameTextA
GetWindowRect
LoadCursorW
EnumDesktopsW
IsCharLowerW

gdi32

SelectPalette
CreateEnhMetaFileW
CreateColorSpaceW
DPtoLP
ExtCreatePen
SetDIBitsToDevice
RectInRegion
CreateICW
SetColorAdjustment
GetPolyFillMode
GetCharWidthA
EnumMetaFile
GetTextExtentPoint32W
GetAspectRatioFilterEx
CheckColorsInGamut
GetMiterLimit
GetCharWidthFloatW
Pie
Escape
GetEnhMetaFileHeader
CreateMetaFileW
PolyBezier
GetWindowExtEx
CreateEllipticRgn
GetCharABCWidthsA
CopyEnhMetaFileW
CopyMetaFileW
EnumFontFamiliesExW
GetTextMetricsW
GetBrushOrgEx

comdlg32

ChooseFontA

advapi32

BuildSecurityDescriptorW
BuildTrusteeWithSidA
CryptReleaseContext
EnumDependentServicesA
BuildTrusteeWithNameA
RegConnectRegistryW
OpenBackupEventLogW
ReadEventLogA
PrivilegedServiceAuditAlarmA
GetUserNameW
GetServiceDisplayNameA
RegSetValueA
SetSecurityDescriptorDacl
RegCreateKeyExA
GetTokenInformation
AddAccessAllowedAce
GetExplicitEntriesFromAclW
SetPrivateObjectSecurity
CryptEnumProviderTypesW
GetSecurityDescriptorLength
GetSidSubAuthorityCount
GetSidSubAuthority
CryptGetHashParam
AllocateAndInitializeSid
CryptAcquireContextA
GetAuditedPermissionsFromAclW
SetNamedSecurityInfoW
GetServiceKeyNameW
AddAce
LookupAccountSidA

shell32

DuplicateIcon
ShellAboutW
FindExecutableW
SHAppBarMessage
ExtractAssociatedIconExW
SHGetFileInfoW
SHChangeNotify
SHGetDesktopFolder
SHFileOperationA

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

Sections

.text
Size: 263KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

w6kcb1f3
Size: 45KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

sqf0h8r6
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

951eef9c54947aefe8bddba651037cd8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

msvcrt

Sections

.text Size: 263KB - Virtual size: 264KB

.rdata Size: 5KB - Virtual size: 8KB

.data Size: 24KB - Virtual size: 28KB

w6kcb1f3 Size: 45KB - Virtual size: 48KB

sqf0h8r6 Size: 4KB - Virtual size: 4KB

.text
Size: 263KB - Virtual size: 264KB

.rdata
Size: 5KB - Virtual size: 8KB

.data
Size: 24KB - Virtual size: 28KB

w6kcb1f3
Size: 45KB - Virtual size: 48KB

sqf0h8r6
Size: 4KB - Virtual size: 4KB