59c91c7fe8a9596a9260d56f4dd9bbfb_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

59c91c7fe8a9596a9260d56f4dd9bbfb_JaffaCakes118
Size

167KB
MD5

59c91c7fe8a9596a9260d56f4dd9bbfb
SHA1

9f795787707d86fbf99c1904bb98316a61f37df1
SHA256

e631e37b85481f324d6a05f874a786b8b50a34906b889a1a42b91dba11e442fc
SHA512

0c936104b08928bc4eacc348fece45c74a49daca39c44a45a7399cefbeb588b8cd8978e89202f6d4cdaf66f582bfb52fda52ab6eafa28f5fc663bd7f3501f9f5
SSDEEP

3072:ahuX3nUCWtKRDTnFiOXlk1vzXokNA6Ai/sV9ijcmx0jHvpE3S2Xt4:mBCWWP7lk174kO983x0763DXt4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59c91c7fe8a9596a9260d56f4dd9bbfb_JaffaCakes118

Files

59c91c7fe8a9596a9260d56f4dd9bbfb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f3d85c0109351df525126a9aacecd345

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

ole32

CoTaskMemFree
CoTaskMemRealloc
CoCreateInstance
CoTaskMemAlloc
CoUninitialize
CoInitialize

msvfw32

ICInfo

gdi32

CreateFontIndirectW
GetDeviceCaps
DeleteObject

shell32

SHGetSpecialFolderLocation
ShellExecuteW
SHGetPathFromIDListW

kernel32

GetStdHandle
GetEnvironmentStringsW
ReadFile
RtlUnwind
SetFilePointer
ExitProcess
WriteConsoleInputVDMA
GetProcessHeap
GetModuleFileNameW
CreateFileA
lstrlenA
GetFileAttributesW
GetStringTypeW
lstrcmpA
FreeEnvironmentStringsA
HeapFree
VirtualAlloc
HeapDestroy
FreeLibrary
FlushInstructionCache
GetSystemDirectoryW
GetCPInfo
GetVersionExW
SizeofResource
GetOEMCP
GetCurrentThreadId
LocalAlloc
UnhandledExceptionFilter
GetModuleHandleA
LoadLibraryExW
MulDiv
WritePrivateProfileSectionW
InterlockedIncrement
GetConsoleCP
LockResource
GetLastError
GetProcessHandleCount
GetVersionExA
LCMapStringA
SetStdHandle
CopyFileW
CreateFileMappingW
HeapSize
GetDriveTypeW
WriteConsoleW
Sleep
CreateFileW
DeleteCriticalSection
SetUnhandledExceptionFilter
InterlockedExchange
lstrcmpiW
GetLocaleInfoA
GetCurrentProcessId
RaiseException
GetConsoleMode
LCMapStringW
LoadResource
GetConsoleOutputCP
InitializeCriticalSection
SetLastError
CreateSemaphoreW
VirtualFree
TlsFree
GetModuleFileNameA
EnumResourceNamesA
SetHandleCount
FreeEnvironmentStringsW
GetACP
WriteConsoleA
TlsAlloc
LoadLibraryW
FlushFileBuffers
GetVersion
GetProcAddress
CloseHandle
LeaveCriticalSection
TlsSetValue
CreateProcessW
IsDebuggerPresent
DeleteFileW
GetStartupInfoA
GetSystemTimeAsFileTime
LoadLibraryA
IsProcessorFeaturePresent
WriteFile
HeapReAlloc
HeapAlloc
HeapCreate
GetStartupInfoW
GetFileSize
GetTickCount
GetCurrentProcess
GetStringTypeA
FindResourceW
WaitForSingleObject
GetFileType
InterlockedCompareExchange
WideCharToMultiByte
GetEnvironmentStrings
GetCommandLineW
GetModuleHandleW
QueryPerformanceCounter
GetCommandLineA
GetThreadLocale
TlsGetValue
LocalFree
InterlockedDecrement
lstrlenW

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

user32

EndPaint
GetWindowTextLengthW
GetWindowRect
DispatchMessageW
DestroyWindow
CreateWindowExW
BeginPaint
GetDlgItemTextW
TranslateMessage
SetWindowTextW
SystemParametersInfoW
PeekMessageW
GetWindow
GetDC
GetParent
GetClassInfoExW
RegisterClassExW
MapWindowPoints
GetWindowInfo
GetClientRect
SetWindowPos
LoadCursorW
SetDlgItemTextW
GetDlgItem
SetCapture
MessageBoxW
EndDialog

Sections

.text
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idive
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f3d85c0109351df525126a9aacecd345

Headers

File Characteristics

Imports

ole32

msvfw32

gdi32

shell32

kernel32

version

user32

Sections

.text Size: 85KB - Virtual size: 85KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 75KB - Virtual size: 74KB

.idive Size: 1024B - Virtual size: 248KB

.text
Size: 85KB - Virtual size: 85KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 75KB - Virtual size: 74KB

.idive
Size: 1024B - Virtual size: 248KB