47b44ca83ad3ce864a0b9ca233f56957_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

47b44ca83ad3ce864a0b9ca233f56957_JaffaCakes118
Size

320KB
MD5

47b44ca83ad3ce864a0b9ca233f56957
SHA1

dd9bf5092790ffbdc2ee720252a31c9b8de2c18e
SHA256

c6d00232964379dee5cc08faec8a029206f98ecbc7bb2424158378def5c421ea
SHA512

10deb570271d7377a925ef0fd499b5ad504072f3b975e923c5300bc7e7e0c8f0d259e20f4e1edb874fc892cc1d868aa4635431f129b437a5c49b4299d234a268
SSDEEP

6144:jkrpaemBHemcBSfs02pM8Y33t063O31Y:jkrsJHRcBk2psm6e3W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47b44ca83ad3ce864a0b9ca233f56957_JaffaCakes118

Files

47b44ca83ad3ce864a0b9ca233f56957_JaffaCakes118
.exe windows:4 windows x86 arch:x86

22e60bdad7a6946bb6b17d5558abb9db

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsSetValue
SetFilePointer
GetTempPathA
SetEnvironmentVariableW
IsValidLocale
SetEnvironmentVariableA
FillConsoleOutputCharacterA
TerminateProcess
lstrlenA
InterlockedCompareExchange
GetSystemInfo
WriteFileEx
GlobalAddAtomA
HeapCreate
GetCurrentProcess
InterlockedExchange
VirtualFree
GetPrivateProfileSectionNamesA
GetCurrentThreadId
OpenMutexA
SetConsoleTextAttribute
GetDriveTypeA
GlobalReAlloc
SetStdHandle
ReadConsoleOutputA
CommConfigDialogW
FreeEnvironmentStringsA
DeleteCriticalSection
EnumResourceLanguagesW
FileTimeToLocalFileTime
IsValidCodePage
LCMapStringA
GetThreadContext
GetProcAddress
LoadLibraryExA
CompareStringW
GetFileType
GetSystemTimeAsFileTime
HeapValidate
SetLocaleInfoA
MultiByteToWideChar
GetLocaleInfoA
GetPrivateProfileStructA
GetDateFormatA
GetStringTypeA
RtlUnwind
GetStdHandle
SetLastError
WaitForMultipleObjects
ReadFile
HeapSize
GetCalendarInfoW
HeapAlloc
GetThreadPriority
GetEnvironmentStringsA
TlsGetValue
FileTimeToSystemTime
GetCommandLineA
VirtualProtect
LoadModule
LCMapStringW
GetModuleHandleA
QueryPerformanceCounter
FlushFileBuffers
HeapFree
TlsAlloc
SetHandleCount
GetACP
WritePrivateProfileSectionW
GetEnvironmentStrings
IsBadWritePtr
GetCPInfo
GetCurrentProcessId
GetStartupInfoA
GetVersionExA
WriteConsoleInputW
InitializeCriticalSection
GetSystemDefaultLCID
WaitForSingleObject
HeapDestroy
EnterCriticalSection
CreateDirectoryA
AllocConsole
HeapReAlloc
WriteFile
FreeLibraryAndExitThread
CreateMutexA
EnumSystemLocalesA
WideCharToMultiByte
GetModuleFileNameA
GlobalGetAtomNameW
GetLastError
LocalLock
FindResourceExW
GetCurrentThread
GlobalFindAtomA
OutputDebugStringW
TlsFree
GetTimeZoneInformation
CreateProcessA
OpenWaitableTimerA
GetFullPathNameW
WaitForSingleObjectEx
GlobalFix
FindNextFileA
CreateFileA
SetConsoleCP
GetUserDefaultLCID
FreeEnvironmentStringsW
LoadLibraryA
GetProfileSectionA
VirtualQuery
CreateRemoteThread
UnhandledExceptionFilter
VirtualAlloc
LocalReAlloc
GetEnvironmentStringsW
GetLocaleInfoW
ExitProcess
GetTimeFormatA
CloseHandle
CompareStringA
GetOEMCP
GetTickCount
EnumResourceLanguagesA
TransactNamedPipe
FormatMessageA
LeaveCriticalSection
GetStringTypeW

user32

SetWindowLongA
MapVirtualKeyW
RegisterWindowMessageA
DispatchMessageW
IsWindowVisible
MessageBoxW
DefWindowProcA
SetDlgItemTextW
GetClassInfoExW
GetCaretPos
DestroyWindow
SendInput
SendMessageW
InSendMessage
GetMenuItemCount
ReleaseCapture
RemovePropA
CharLowerA
GetClipboardFormatNameA
GetMenu
FindWindowExA
GetWindowLongA
CharNextW
TileWindows
GetCaretBlinkTime
ShowWindow
CharLowerW
RegisterClassA
InflateRect
DlgDirListA
EndMenu
SetDebugErrorLevel
RegisterClassExA
MsgWaitForMultipleObjectsEx
InsertMenuA
CharLowerBuffW
CharLowerBuffA
GetClassLongW
GetAncestor
IsCharAlphaW
DestroyAcceleratorTable
GetUpdateRgn
TileChildWindows
CreateDesktopW
FlashWindow
TrackMouseEvent
AnyPopup
LoadMenuW
SetWinEventHook
IsWindowEnabled
CreateWindowExA
OpenWindowStationW
GetDCEx
UnhookWindowsHookEx
DdeInitializeA
CreateIconFromResourceEx
LoadIconW
DrawEdge
ValidateRect

advapi32

RegSetValueW
RegCreateKeyExA
CryptGetProvParam
RegSaveKeyA
RegQueryMultipleValuesW
CryptGenKey
RegSetValueExA
RegSetKeySecurity
CryptDeriveKey
DuplicateTokenEx
CryptSignHashW
CryptExportKey

comctl32

InitCommonControlsEx
CreateStatusWindowW

Sections

.text
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

22e60bdad7a6946bb6b17d5558abb9db

Headers

File Characteristics

Imports

kernel32

user32

advapi32

comctl32

Sections

.text Size: 84KB - Virtual size: 80KB

.rdata Size: 96KB - Virtual size: 95KB

.data Size: 92KB - Virtual size: 112KB

.rsrc Size: 44KB - Virtual size: 43KB

.text
Size: 84KB - Virtual size: 80KB

.rdata
Size: 96KB - Virtual size: 95KB

.data
Size: 92KB - Virtual size: 112KB

.rsrc
Size: 44KB - Virtual size: 43KB