492db9cf3554d71d5cc731ec77bb4c4b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

492db9cf3554d71d5cc731ec77bb4c4b_JaffaCakes118
Size

521KB
MD5

492db9cf3554d71d5cc731ec77bb4c4b
SHA1

04ac3dfa41ab7fa77c7e5135ce0c80db10402b94
SHA256

de0e10b1d1cf7f00599816aeb113e1e0c311d3749c7aff10685dc41d514eee06
SHA512

bf925eadc1717439898d86cc780e1a512273a501034749851e3be6419f495f5cfec1e19e544f4ed44af17a4635e30e6ca026f94f35d80e04e0c13196549f7878
SSDEEP

12288:E4guIoXfHFTLyUb0+zFGeTcTw7j1/qhZO+z1V9KyRB:E4zNvFTLyUb7BfTkw71qhZXB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
492db9cf3554d71d5cc731ec77bb4c4b_JaffaCakes118

Files

492db9cf3554d71d5cc731ec77bb4c4b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4c56e2c370ea480790a43793880b0d5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
CreateDirectoryA
GetEnvironmentVariableA
SetErrorMode
FreeLibrary
TerminateProcess
OpenProcess
lstrcmpiA
CloseHandle
LoadLibraryA
WaitForSingleObject
CreateProcessA
FreeResource
_lclose
_lwrite
_lcreat
LockResource
LoadResource
SizeofResource
FindResourceA
GetUserDefaultLCID
GetPrivateProfileIntA
GetModuleFileNameA
lstrcmpA
GetDriveTypeA
GetFullPathNameA
FileTimeToLocalFileTime
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
GetCurrentProcessId
GetCurrentThreadId
FindFirstFileA
QueryPerformanceCounter
IsBadCodePtr
InterlockedExchange
GetLocaleInfoA
VirtualQuery
GetSystemInfo
VirtualProtect
CreateFileA
GetStringTypeW
GetStringTypeA
HeapSize
SetUnhandledExceptionFilter
HeapReAlloc
VirtualAlloc
GetTimeZoneInformation
FlushFileBuffers
SetFilePointer
ReadFile
VirtualFree
HeapCreate
HeapDestroy
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
GetCurrentDirectoryA
LCMapStringA
GetCPInfo
GetOEMCP
SetFileAttributesA
DeleteFileA
FindNextFileA
FindClose
SetCurrentDirectoryA
RemoveDirectoryA
GetModuleHandleA
GetProcAddress
GetLastError
GetDiskFreeSpaceA
GetPrivateProfileStringA
lstrcatA
GetCommandLineA
lstrlenA
GetProcessHeap
HeapAlloc
GetTickCount
lstrcpyA
DebugBreak
IsBadReadPtr
IsBadWritePtr
SetFileTime
SystemTimeToFileTime
FileTimeToSystemTime
ExitProcess
GetCurrentProcess
GetSystemTimeAsFileTime
GetStartupInfoA
GetVersionExA
RtlUnwind
SetStdHandle
GetFileType
HeapFree
RaiseException
WriteFile
GetACP

user32

IsWindow
SendMessageA
GetDlgCtrlID
GetClassNameA
GetWindowLongA
PeekMessageA
TranslateMessage
DispatchMessageA
PostQuitMessage
GetSysColorBrush
EndDialog
GetDlgItem
ScreenToClient
RegisterWindowMessageA
MessageBoxA
DestroyWindow
GetPropA
RemovePropA
SetPropA
BeginPaint
EndPaint
SetWindowWord
InvalidateRect
UpdateWindow
DefWindowProcA
FillRect
GetClientRect
GetSysColor
FrameRect
InflateRect
UnregisterClassA
GetDesktopWindow
GetDC
ReleaseDC
ShowWindow
GetDlgItemTextA
wsprintfA
SetDlgItemTextA
SendDlgItemMessageA
GetWindowRect
GetSystemMetrics
SetWindowPos
GetWindow

gdi32

SetTextColor
SetBkColor
SetBkMode
DeleteDC
CreateCompatibleDC
GetObjectA
CreateCompatibleBitmap
SetStretchBltMode
SetBrushOrgEx
StretchBlt
BitBlt
CreateSolidBrush
SelectObject
PatBlt
DeleteObject
GetDeviceCaps
CreateFontIndirectA

Sections

.text
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4c56e2c370ea480790a43793880b0d5b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 75KB - Virtual size: 74KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 7KB - Virtual size: 14KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 75KB - Virtual size: 74KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 7KB - Virtual size: 14KB

.rsrc
Size: 8KB - Virtual size: 8KB