4d5d5977fc5981cda2687c4baec1898b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

4d5d5977fc5981cda2687c4baec1898b_JaffaCakes118
Size

108KB
MD5

4d5d5977fc5981cda2687c4baec1898b
SHA1

e411b330bc63ee06ea855855cfb989871fa693f6
SHA256

730aac39bcb1054bc21e867d07afd3f93b1596d93f420ee9299ad57bfbeca0f9
SHA512

03ad5f4cef696ff7fd0b6716a0dcd5d33977928b77588f3a325a2081b6957af069bfe08cb198e5b15431f0cfbbd8cf0189e88af3b181d74a9f92a9c045ae2015
SSDEEP

1536:vXUZSNJavtdKoP4wzF9Om/ew+BKJ9kdoOcRbk:vXUZSfaGozzXL/R+zdoOcS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d5d5977fc5981cda2687c4baec1898b_JaffaCakes118

Files

4d5d5977fc5981cda2687c4baec1898b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c2a26b9279d00cf5815c52c62fdbbf01

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
CompareStringW
CompareStringA
FlushFileBuffers
LCMapStringW
LCMapStringA
SetStdHandle
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
HeapValidate
IsBadReadPtr
GetVersion
SetConsoleCtrlHandler
SetFilePointer
GetLastError
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
RtlUnwind
VirtualFree
HeapFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
IsBadWritePtr
OutputDebugStringA
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
ExitProcess
DebugBreak
GetStdHandle
WriteFile
InterlockedDecrement
GetProcAddress
LoadLibraryA
InterlockedIncrement
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
CloseHandle

user32

IsWindow
GetWindowTextA
IsWindowVisible
IsZoomed
EndDialog
GetDesktopWindow
GetWindowRect
EnumWindows
PostQuitMessage
DialogBoxParamA
DefWindowProcA
BeginPaint
EndPaint
InvalidateRect
IsIconic
GetWindowDC
ReleaseDC
KillTimer
GetSystemMetrics
CreateWindowExA
SetTimer
SetWindowPos
ShowWindow
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassA
wsprintfA
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

GetStockObject

Exports

Exports

About
EnumGetAllWindowPos
EnumMoveAllWindows
MainWndProc

Sections

.text
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c2a26b9279d00cf5815c52c62fdbbf01

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 72KB - Virtual size: 69KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 46KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 2KB

.reloc Size: 8KB - Virtual size: 4KB

.text
Size: 72KB - Virtual size: 69KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 46KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 2KB

.reloc
Size: 8KB - Virtual size: 4KB