4dcccef9dc37e2abed2715aa764357d3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4dcccef9dc37e2abed2715aa764357d3_JaffaCakes118
Size

97KB
MD5

4dcccef9dc37e2abed2715aa764357d3
SHA1

73a2b78540cb108debe7a4a0a64e83ca48ff935f
SHA256

978ff4cf8d70d1d9696870369215da879c6ce967c0c170912b03b06070222dd4
SHA512

22dd8984573e17e2ae645eaca87cf310a54f41364993ca6075ddf1d54e757db0f039f4af81985ad1077f24aa09770a3f14a781cea0d60518a1632fa60c61726b
SSDEEP

1536:UHJjTpttYSlsNnKZHbc1hm7BYTwB5aLDvBO9Q+ZQMkXqsnmHLIip+:Uzt/21KdReTwB5aLlO9Q+ZQMk6snmO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4dcccef9dc37e2abed2715aa764357d3_JaffaCakes118

Files

4dcccef9dc37e2abed2715aa764357d3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8bea30cf66f4038d0dd2b46602b98454

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleW
lstrcpynW
GetModuleFileNameW
LoadLibraryW
ExpandEnvironmentStringsW
DisableThreadLibraryCalls
FormatMessageW
ReleaseMutex
lstrcatW
lstrlenW
GetDiskFreeSpaceW
GetSystemDirectoryW
GlobalMemoryStatusEx
GetModuleHandleA
Sleep
GetLastError
WaitForSingleObject
DeviceIoControl
ReadFile
VirtualFree
CreateThread
UnmapViewOfFile
SetFilePointer
SetLastError
MapViewOfFile
CreateFileMappingW
WriteFile
VirtualAlloc
DeleteFileW
SetEndOfFile
MapViewOfFileEx
CloseHandle
GetProcessHeap
HeapAlloc
CreateFileW
GetTickCount
MoveFileW
GetFileSize
TerminateProcess
EnterCriticalSection
LeaveCriticalSection
LocalAlloc
LocalFree
DeleteCriticalSection
GetCurrentProcess
GetStartupInfoA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InterlockedExchange
VirtualQuery
InitializeCriticalSection
GlobalFree
GetCommandLineA
VirtualProtect
lstrcpyW
GlobalAlloc

user32

LoadStringW
CheckRadioButton
RegisterWindowMessageW
DrawTextW
GetDC
ReleaseDC
ShowWindow
GetDlgItem
SetDlgItemTextW
MessageBoxW
WinHelpW
SetWindowTextW
EndDialog
DestroyWindow
BringWindowToTop
FindWindowW
SendDlgItemMessageW
ExitWindowsEx
CharPrevW
CharNextW
wsprintfW
GetDlgItemInt
CheckDlgButton
GetWindowLongW
EnableWindow
GetParent
SetWindowLongW
SetWindowPos
GetWindowTextW
KillTimer
SetTimer
LoadImageW
SetFocus
SendMessageW
IsDlgButtonChecked

advapi32

AdjustTokenPrivileges
RegQueryValueExW
RegCloseKey
LockServiceDatabase
ControlService
RegCreateKeyExW
GetTokenInformation
OpenProcessToken
ChangeServiceConfigW
UnlockServiceDatabase
OpenSCManagerW
RegSetValueExW
StartServiceW
RegEnumKeyExW
RegEnumValueW
QueryServiceStatus
CloseServiceHandle
OpenServiceW
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyA
OpenServiceA
QueryServiceConfigA
RegDeleteKeyW
RegSetValueExA
RegOpenKeyExW

gdi32

CreateCompatibleDC
CreateDCW
DeleteDC
DeleteObject
GetRegionData
GetRandomRgn
CreateFontIndirectW
CreateDIBSection
SelectObject
EndDoc
GetDeviceCaps
StartDocW
CreateRectRgn

ole32

CoInitialize
CoCreateInstance
CoUninitialize
CoTaskMemFree

rpcrt4

RpcServerUnregisterIf
RpcBindingVectorFree

msvcr71

_onexit
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_amsg_exit
_acmdln
exit
_cexit
_ismbblead
_XcptFilter
_exit
_c_exit
_wsplitpath
_wcsicmp
wcscat
wcschr
memcpy
malloc
wcscpy
_mbscpy
wcsrchr
wcslen
swprintf
_wcsnset
_ftol
_except_handler3
__dllonexit
_controlfp

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 324KB - Virtual size: 641KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8bea30cf66f4038d0dd2b46602b98454

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

rpcrt4

msvcr71

Sections

.text Size: 69KB - Virtual size: 69KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 324KB - Virtual size: 641KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 69KB - Virtual size: 69KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 324KB - Virtual size: 641KB

.rsrc
Size: 7KB - Virtual size: 7KB