47cbf535d1aa8554aa868b195ed11920_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

47cbf535d1aa8554aa868b195ed11920_JaffaCakes118
Size

60KB
MD5

47cbf535d1aa8554aa868b195ed11920
SHA1

68c896d1cfa35ba8fb327ba3f267d3bd6038cd4c
SHA256

ead44870bacf36445d473fa5bc430451e9e56c9de87c257f096b87619a4598e8
SHA512

7d3a52dffebdb14adefc5bed020062a376f6d5955553a101352d68b1f4c8d2c1943e2a7c89d1c4224234eff5b10322a67d8975cb6122fad05758db3f8141b76b
SSDEEP

768:GH1JhZ7O+H5C4y3hy77W/VKxmmvZsw6m7biASJWIoGV8hd4xda+OrUQpHc:GrXOfRG7yVjwPiAQnzcUQ1c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47cbf535d1aa8554aa868b195ed11920_JaffaCakes118

Files

47cbf535d1aa8554aa868b195ed11920_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bf0115d41426be7c5ac46224afbfa353

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AllowSetForegroundWindow
GetKeyState
DestroyMenu
MapWindowPoints
GetWindowInfo
GetMenuItemInfoW
MessageBoxW
GetMenuCheckMarkDimensions
BeginPaint
EndPaint
GetSubMenu
GetFocus
FillRect
SetMenuItemBitmaps
GetWindowWord
IsIconic
TrackPopupMenuEx
CharNextA
DispatchMessageW
DispatchMessageA
ChildWindowFromPointEx
SetCapture
PtInRect
UnregisterClassA
GetMenuItemInfoA
DrawIconEx
LoadStringW
ScreenToClient
PostMessageW
GetMenuStringW
GetMenuStringA
SendMessageW
MessageBeep
DefWindowProcA
GetWindowRgn
OffsetRect
ClientToScreen
ReleaseCapture
PeekMessageA
EnableMenuItem

kernel32

GetLocaleInfoA
GetModuleFileNameW
LockResource
FreeEnvironmentStringsA
TlsFree
LoadResource
GlobalLock
CreateThread
GetFileType
SetErrorMode
CompareStringW
TlsSetValue
DeleteFileA
LCMapStringA
GlobalUnlock
FreeEnvironmentStringsW
WaitForMultipleObjectsEx
CreateProcessA
TlsGetValue
WriteFileEx
SetHandleCount
InterlockedIncrement
GetExitCodeProcess
SetEvent
HeapSize
GetFileAttributesW
GetFileAttributesA
SizeofResource
FlushFileBuffers
InterlockedCompareExchange
DeleteFileW
GetThreadLocale
GetStringTypeA
LCMapStringW
GetStartupInfoW
LocalAlloc
GetStringTypeW
FormatMessageW
lstrlenW
SetStdHandle
GetLastError
GetCurrentThreadId
VirtualAlloc
GetModuleHandleW
GetFileSize
InterlockedDecrement
GetEnvironmentStrings

setupapi

SetupRemoveSectionFromDiskSpaceListA

msvcrt

__dllonexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
_wcmdln
exit
_XcptFilter
_exit
_onexit

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf0115d41426be7c5ac46224afbfa353

Headers

File Characteristics

Imports

user32

kernel32

setupapi

msvcrt

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 32KB - Virtual size: 114KB

.rsrc Size: 12KB - Virtual size: 10KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 32KB - Virtual size: 114KB

.rsrc
Size: 12KB - Virtual size: 10KB