47da9e8c85a88c8d5632cb3c32882d1f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

47da9e8c85a88c8d5632cb3c32882d1f_JaffaCakes118
Size

157KB
MD5

47da9e8c85a88c8d5632cb3c32882d1f
SHA1

36e3147048e96c5d266e7ab5c89691f711ed8428
SHA256

2d2c811f727708e958c39e7ad383f3c59a3e9ab31a497638f088c93f52dafcb7
SHA512

d3c76e55d37505ed463e016a6f6c38ef1ad47330ceed31ae371bffd0f40b97841e7d2f1aa6420758369c0bdb8fa8a4c9a95b2d70cc19e93174b0df8813c17e87
SSDEEP

3072:9/wLfcWe0phNVoIdkh/u5hIHuqI6c2BZAlOKdbX7waQ/fL1ESFS09TDP3Zn3wr6:9/wLkCHVzd8u5hInBudbxQ/fL1OMP/Zq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47da9e8c85a88c8d5632cb3c32882d1f_JaffaCakes118

Files

47da9e8c85a88c8d5632cb3c32882d1f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

720efc1c57f73249e421366fd3dc2b28

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegQueryInfoKeyW
RegSetValueExW
RegQueryValueExW
RegEnumKeyW
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW
RegDeleteKeyA

shell32

ShellExecuteW

kernel32

MultiByteToWideChar
WideCharToMultiByte
DeleteFileW
GetVDMCurrentDirectories
FindClose
GetUserDefaultUILanguage
GetCurrentProcessId
MoveFileW
SetThreadPriorityBoost
GetLocalTime
FindFirstFileW
CreateFileA
ExitProcess
EnumResourceNamesW
HeapAlloc
SetFilePointer
FreeLibrary
SetUnhandledExceptionFilter
LoadLibraryW
GetModuleHandleA
ReadFile
OutputDebugStringW
CreateProcessW
WriteFile
GetProcAddress
HeapFree

user32

GetWindowLongW
SetRect
MessageBoxW
GetDlgItem
GetWindowRect
EndDialog
MoveWindow
GetSysColor
AdjustWindowRect
SetWindowTextW
SetWindowsHookExW
GetMenuStringW
GetWindowInfo
SendMessageW

comctl32

ImageList_ReplaceIcon
ImageList_Create
ImageList_Draw
ImageList_Destroy

comdlg32

GetSaveFileNameW

gdi32

SetViewportOrgEx
CreateDCW
SetTextColor
CreateCompatibleBitmap
GetTextMetricsW
SetViewportExtEx
CreateSolidBrush
GetCharWidthW
SetBkMode
BitBlt
SelectObject
MoveToEx
SetBkColor
DeleteDC
LineTo
DeleteObject
StretchBlt
CreatePen
CreateFontW
CreatePatternBrush
GetObjectW
CombineRgn
CreateCompatibleDC
ExtCreateRegion
GetDeviceCaps
CreateDIBSection
GetStockObject

msvfw32

ICInfo

Sections

.text
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

720efc1c57f73249e421366fd3dc2b28

Headers

File Characteristics

Imports

advapi32

shell32

kernel32

user32

comctl32

comdlg32

gdi32

msvfw32

Sections

.text Size: 95KB - Virtual size: 95KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 57KB - Virtual size: 57KB

.imul Size: 1024B - Virtual size: 100KB

.text
Size: 95KB - Virtual size: 95KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 57KB - Virtual size: 57KB

.imul
Size: 1024B - Virtual size: 100KB