4c877426cccb506f11eab379ec3592bb_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

4c877426cccb506f11eab379ec3592bb_JaffaCakes118
Size

806KB
MD5

4c877426cccb506f11eab379ec3592bb
SHA1

b102114207353b88957ef7e771dd4adeb179d2f8
SHA256

43ce2e32e4f3f6aebdf5e133e2ab030372c17b2005a3bf19b2f07116567894dd
SHA512

574dd45a83608cf71d60032bd509b9b365aff4fde4a124bad8edabaa3995ef97fdb8d2aa1881ab1d48b656a150dd93813f559cc231d0ffe2c7980b2f4c8a5f36
SSDEEP

12288:bLbAdADIdjfwGzBhYhDV+LHJ9cukLg0mxrUJnzsi+9cJndBWONoSwJndBWORuJm:b3AdSIdjfwGzBhSLg0mxaYOnSnfMm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c877426cccb506f11eab379ec3592bb_JaffaCakes118

Files

4c877426cccb506f11eab379ec3592bb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

401af4bd3fdc16ae28f923cc88529d9b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

comdlg32

GetOpenFileNameA

gdi32

BitBlt
CreateCompatibleDC
CreateFontA
CreateSolidBrush
DeleteDC
GetObjectA
SelectObject
SetBkColor
SetBkMode
SetTextColor

kernel32

AddAtomA
CloseHandle
CreateFileA
CreateFileMappingA
CreateSemaphoreA
CreateThread
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FindAtomA
FindResourceA
GetAtomNameA
GetCommandLineA
GetFileSize
GetLastError
GetModuleHandleA
GetStartupInfoA
GetTickCount
HeapAlloc
HeapCreate
HeapDestroy
InitializeCriticalSection
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
LeaveCriticalSection
LoadResource
MapViewOfFile
ReadFile
ReleaseSemaphore
SetFilePointer
SetLastError
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnmapViewOfFile
WaitForSingleObject
WriteFile
lstrcpyA
lstrlenA

msvcrt

_fdopen
_read
_strdup
_strrev
_strupr
_write
__getmainargs
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_ctype
_errno
_filelengthi64
_fstati64
_iob
_lseeki64
_onexit
_setmode
_vsnprintf
abort
atexit
calloc
exit
fclose
fflush
fgetc
fgetpos
fopen
fputc
fread
free
fsetpos
fwrite
getc
malloc
memchr
memcpy
memmove
memset
putc
setlocale
setvbuf
signal
srand
strcmp
strcoll
strcpy
strftime
strlen
strtod
strxfrm
ungetc

user32

CallWindowProcA
CreateDialogParamA
CreateWindowExA
DefWindowProcA
DispatchMessageA
EndDialog
GetDC
GetDlgItem
GetDlgItemTextA
GetMessageA
GetSystemMetrics
GetWindowLongA
GetWindowRect
KillTimer
LoadBitmapA
LoadIconA
MessageBoxA
MoveWindow
PostMessageA
PostQuitMessage
SendMessageA
SetDlgItemTextA
SetFocus
SetLayeredWindowAttributes
SetTimer
SetWindowLongA
SetWindowPos
SetWindowTextA
ShowWindow
TranslateMessage
wsprintfA

winmm

waveOutClose
waveOutGetPosition
waveOutOpen
waveOutPrepareHeader
waveOutReset
waveOutUnprepareHeader
waveOutWrite

Sections

.text
Size: 593KB - Virtual size: 596KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

401af4bd3fdc16ae28f923cc88529d9b

Headers

File Characteristics

Imports

comdlg32

gdi32

kernel32

msvcrt

user32

winmm

Sections

.text Size: 593KB - Virtual size: 596KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 208KB - Virtual size: 207KB

.text
Size: 593KB - Virtual size: 596KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 208KB - Virtual size: 207KB