4cc0dececc3354b68014e4cee2ec84dd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4cc0dececc3354b68014e4cee2ec84dd_JaffaCakes118
Size

552KB
MD5

4cc0dececc3354b68014e4cee2ec84dd
SHA1

63acbe75b576a0d8c943140ba5e3f1ea40515365
SHA256

c31635a7619be770825177d2ab7afb3d4c04597dacdb0a781a5f0c57de0e8684
SHA512

a9a928d5446c4d238c59995eee2338de7a01ddb03d5175ea98dd9b05cf4526eb658ceca4dff607d3358ea7344c01d3264f3ece65b74d0fe81a1e642dc9fb95ca
SSDEEP

12288:lOso5M6eN9f8KL1o2BMgH1vee46KMBqcjZgCMLw9lrCT:lOtMn9f8Y16g5946fBqwZgrLw9leT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4cc0dececc3354b68014e4cee2ec84dd_JaffaCakes118

Files

4cc0dececc3354b68014e4cee2ec84dd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f52ed0609ad531a2c90cc64ddd49b134

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
InterlockedDecrement
MultiByteToWideChar
SetEnvironmentVariableA
FlushFileBuffers
GetConsoleMode
GetProcessHeap
CloseHandle
WritePrivateProfileSectionW
InterlockedExchange
SetStdHandle
UnhandledExceptionFilter
GetStringTypeW
GetCurrentProcess
GetModuleFileNameA
GetCurrencyFormatA
FreeEnvironmentStringsW
ExpandEnvironmentStringsW
GetACP
FreeLibrary
ReleaseMutex
GetStringTypeA
FillConsoleOutputAttribute
TlsFree
GlobalUnfix
LeaveCriticalSection
TlsSetValue
TlsAlloc
TransactNamedPipe
IsDebuggerPresent
GetConsoleCP
GetLastError
FlushConsoleInputBuffer
InitializeCriticalSection
HeapAlloc
WriteConsoleOutputW
TlsGetValue
LocalAlloc
GetCommandLineA
SetUnhandledExceptionFilter
WriteFile
GetConsoleOutputCP
ReadConsoleOutputCharacterW
IsValidLocale
ReadFile
HeapCreate
SetHandleCount
GetFileSize
ExitProcess
GetVersionExA
EnterCriticalSection
GetCurrentThreadId
GetEnvironmentStrings
FreeEnvironmentStringsA
GetCurrentThread
lstrcmpi
HeapDestroy
GetConsoleTitleW
QueryPerformanceCounter
HeapFree
DeleteFileW
GetDateFormatA
GetLocaleInfoW
WideCharToMultiByte
GetLocaleInfoA
SetFilePointer
FindClose
HeapReAlloc
CompareStringW
GetFileType
GetModuleHandleA
GetCPInfo
GetTempFileNameW
SetLastError
GetUserDefaultLCID
GetTimeZoneInformation
CopyFileA
CreateMutexA
RtlUnwind
GetCurrentProcessId
WriteConsoleW
ReadConsoleOutputCharacterA
GlobalFree
VirtualQuery
TerminateProcess
EnumSystemLocalesA
GetStartupInfoA
GetSystemTimeAsFileTime
CreateDirectoryA
GetTimeFormatA
TransmitCommChar
EnumResourceTypesW
LoadLibraryA
SetConsoleCtrlHandler
HeapSize
lstrcpynA
VirtualAlloc
GetOEMCP
InterlockedIncrement
SetConsoleCP
VirtualFree
IsValidCodePage
LCMapStringW
DeleteCriticalSection
GetTickCount
EnumSystemLocalesW
OpenMutexA
GetStdHandle
GetEnvironmentStringsW
WaitForSingleObjectEx
GlobalFix
GetProcAddress
WriteConsoleA
LCMapStringA
CreateFileA
CompareStringA

advapi32

CryptDuplicateKey
CryptDuplicateHash
LookupPrivilegeValueW

user32

GetSysColor
SetProcessWindowStation
AppendMenuA
IsChild
RegisterClassExA
RegisterClassA
GetNextDlgTabItem
MessageBoxIndirectA
AnyPopup
SetWindowsHookA
CallMsgFilterW
FillRect
EnumClipboardFormats
DdeDisconnectList
LoadMenuW
ChangeDisplaySettingsW
MapWindowPoints
CharToOemBuffA
MapVirtualKeyA
DdeSetQualityOfService
DlgDirListComboBoxW
ImpersonateDdeClientWindow
GetKeyboardLayoutNameA
OemToCharBuffA
DrawStateW
SendMessageW
RemoveMenu
IsWindowVisible
SetMenuItemInfoW
DragObject
CharPrevA
ValidateRect
CreateWindowExA
GetCursor
BroadcastSystemMessage
GetClassNameA
CloseDesktop
EnumDesktopsA
SetPropW
DestroyWindow
MessageBoxW
GetKeyboardLayoutNameW
ShowWindow
PostMessageW
GetAltTabInfo
GetWindowRect
EmptyClipboard
SetWindowLongA
DdeUninitialize
GetLastActivePopup
DefWindowProcW
EndDialog
LoadStringA
CreateCaret
GetActiveWindow
SetCursorPos
WindowFromDC
CopyAcceleratorTableA
GetClipboardFormatNameA

comctl32

CreateToolbarEx
ImageList_Add
ImageList_Destroy
ImageList_BeginDrag
ImageList_Read
InitCommonControlsEx
ImageList_SetIconSize
ImageList_DragMove
CreateMappedBitmap
ImageList_SetImageCount
ImageList_LoadImageW
ImageList_AddMasked
CreatePropertySheetPageW
ImageList_GetIcon
ImageList_GetBkColor

gdi32

GetBkColor
GetStockObject
GetDIBColorTable
CreateDCA
GetObjectA
SetWindowOrgEx
GetDeviceCaps
BitBlt
DeleteDC
EnumFontFamiliesA
SelectObject
SetDIBitsToDevice

Sections

.text
Size: 164KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 253KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f52ed0609ad531a2c90cc64ddd49b134

Headers

File Characteristics

Imports

kernel32

advapi32

user32

comctl32

gdi32

Sections

.text Size: 164KB - Virtual size: 161KB

.rdata Size: 256KB - Virtual size: 253KB

.data Size: 112KB - Virtual size: 118KB

.rsrc Size: 16KB - Virtual size: 13KB

.text
Size: 164KB - Virtual size: 161KB

.rdata
Size: 256KB - Virtual size: 253KB

.data
Size: 112KB - Virtual size: 118KB

.rsrc
Size: 16KB - Virtual size: 13KB