4da6562febb061d4d411a3b505836d6e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4da6562febb061d4d411a3b505836d6e_JaffaCakes118
Size

277KB
MD5

4da6562febb061d4d411a3b505836d6e
SHA1

5f05a654d06d67c11c7a3168aed27eaea122f4a1
SHA256

a4b3d16d338b17f6bb315d7ea1b173c491a08e93f2a0d8025a19c11e08c5f460
SHA512

19da1a645e50cb2d2b1673bed77c8ecf6310e9e7aadb2b34c8edce1c9cfb691f9061be6561d15b542f9317ec9065613993086e312556bc14aed5062e163cac90
SSDEEP

6144:p+lBroA+0TLVFt+aMKCzWk9bjB5O7v7v+05er52Eeoxm:pvA+0TXwPzh1jBY7v7vrkMEed

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4da6562febb061d4d411a3b505836d6e_JaffaCakes118

Files

4da6562febb061d4d411a3b505836d6e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

08b043b774eed178dfb47edc3922e80d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
LoadResource
DeleteFileW
FindFirstFileW
QueryDosDeviceW
GetCurrentThread
CancelWaitableTimer
VirtualAlloc
ResumeThread
GetTickCount
SetEndOfFile
DuplicateHandle
CreateWaitableTimerW
GlobalDeleteAtom
VirtualFree
GetVersion
CreateEventW
lstrlenW
GetDriveTypeW
FindNextChangeNotification
GetCurrentProcessId
ExitProcess
FreeLibrary
GetProcessHeap
HeapAlloc
HeapFree
HeapSize
IsBadReadPtr
LoadLibraryA
VirtualProtect
GetFileAttributesW
GetCurrentThreadId
GetPrivateProfileStringW
GetModuleFileNameW
WriteFile
SetEvent
LockResource
CreateFileW
SetWaitableTimer
Sleep
CloseHandle
GetFileAttributesExW
FindClose
InterlockedIncrement
GetLastError
GlobalUnlock
MoveFileW
InterlockedDecrement
SizeofResource
GetLocalTime
ResetEvent
WaitForSingleObject
WaitForMultipleObjects
GetLogicalDrives
lstrcpyW
GetProcAddress
GetSystemTime
MulDiv
FileTimeToSystemTime
WritePrivateProfileStringW
FreeResource
FindResourceW

user32

VkKeyScanW
SystemParametersInfoW
RegisterClassExW
SendDlgItemMessageW
IsWindow
SetCursor
DefWindowProcW
GetWindowRect
LoadBitmapW
GetSysColor
GetSystemMetrics
CreatePopupMenu
LoadImageW
GetCursorPos
MessageBoxW
IsDlgButtonChecked
EndDialog
GetClassNameW
ReleaseDC
AppendMenuW
RedrawWindow
GetDlgItem
OffsetRect
TrackPopupMenu
ReleaseCapture
SetWindowPos
GetWindowThreadProcessId
InvalidateRect
SetWindowTextW
GetWindowTextW
GetKeyState
DrawTextW
EnableWindow
LoadStringW
RegisterWindowMessageW
wsprintfW
WindowFromPoint
SetLayeredWindowAttributes
PostThreadMessageW
DialogBoxParamW
LoadIconW
FillRect
SendMessageW
DispatchMessageW

gdi32

MoveToEx
DPtoLP
CreatePen
GetMapMode
CreateRoundRectRgn
CreateICW
SetTextColor
CreateDCW
CreateFontIndirectW
GetClipBox
CreateCompatibleDC
CreateSolidBrush
BitBlt
GetDeviceCaps
DeleteDC
SetDIBits
GetObjectW
Rectangle
CreateCompatibleBitmap
CreateBitmap
StretchBlt

advapi32

RegSetValueExW
RegCloseKey
RegQueryValueExW
LookupPrivilegeValueW
StartServiceW
GetUserNameW
RegCreateKeyExW
RegDeleteValueW
LookupAccountSidW

shell32

SHChangeNotify
Shell_NotifyIconW

ole32

CoInitializeEx
CoUninitialize
CreateStreamOnHGlobal
CoInitialize

oleaut32

OleLoadPicture
SysFreeString

Sections

.text
Size: 244KB - Virtual size: 242KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

08b043b774eed178dfb47edc3922e80d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 244KB - Virtual size: 242KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 24KB - Virtual size: 22KB

.text
Size: 244KB - Virtual size: 242KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 24KB - Virtual size: 22KB