5a0d9c90908be40f4d906f25df01231c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5a0d9c90908be40f4d906f25df01231c_JaffaCakes118
Size

186KB
MD5

5a0d9c90908be40f4d906f25df01231c
SHA1

bcc1de7d1a10a4234a0fc62be94d6a203b68362e
SHA256

efe41ebbdfa0316f63e23e7add508d693c34789e2c07785173847c9df0bc557d
SHA512

6c411b318bae9051bdb2d6e362f1e0d4f0b979686cdd965538ececbac6c91b5b81701b11cee207f4076e04d9de28299ebcbd1d083e84e3cbd0b7ffa32bf97ab8
SSDEEP

3072:zF48vUh00ZVxSoQ8o09wvaRCwaRDVH6cNixHkSxmngobxRhM6SLNsyKHcRR53igw:zbPu0HViBw4l4HcRR53bXbgP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a0d9c90908be40f4d906f25df01231c_JaffaCakes118

Files

5a0d9c90908be40f4d906f25df01231c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

556d63c337b4eb48e07a82708e7cfd3b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
VerQueryValueA

winmm

timeGetTime
timeSetEvent

wininet

InternetOpenUrlA
InternetReadFile
InternetOpenA
InternetCloseHandle

advapi32

RegSetValueExA
CryptEncrypt
RegCloseKey
CryptCreateHash
CryptReleaseContext
RegDeleteValueA
CryptGetHashParam
RegCreateKeyExA
RegQueryInfoKeyA
CryptDestroyHash
CryptDestroyKey
CryptAcquireContextA
CryptImportKey
RegEnumValueA
RegOpenKeyExA
RegEnumKeyExA
RegQueryValueExA
CryptHashData
RegDeleteKeyA

shlwapi

PathFileExistsW
PathCombineW

kernel32

GetShortPathNameW
Sleep
LocalAlloc
ReadFile
CreateFileW
WriteFile
GlobalAlloc
GetProcessId
GlobalSize
SetFilePointer
CreateFileA
CreateFileMappingA
LocalFree
EnumResourceTypesA
MapViewOfFile
UnmapViewOfFile
GetFileAttributesA
GlobalFree
GetFileSize
WideCharToMultiByte
DisableThreadLibraryCalls
GetTickCount
CloseHandle

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

ole32

CoTaskMemFree
CoInitialize
StgOpenStorage
CoGetClassObject
CoUninitialize
OleLockRunning
CoTaskMemRealloc
CreateItemMoniker
StgIsStorageFile
GetRunningObjectTable
OleInitialize
CoInitializeSecurity
CreateBindCtx
OleUninitialize
CreateStreamOnHGlobal
CLSIDFromProgID
BindMoniker
StringFromGUID2
StgCreateDocfile
CoCreateInstance
CoTaskMemAlloc
CoSetProxyBlanket
CLSIDFromString

gdi32

RealizePalette
ExtEscape
SetStretchBltMode
SelectPalette
GetStockObject
GetObjectA
CreateSolidBrush
CreateCompatibleBitmap
GetDIBits
BitBlt
CreateDIBitmap
CreateDIBSection
DeleteDC
CreateCompatibleDC
DeleteObject
GetDeviceCaps
CreateFontA
StretchDIBits
SelectObject
SetBkMode

user32

GetDlgItem
IsChild
SetParent
EnumDisplayDevicesA
DestroyAcceleratorTable
GetClientRect
LoadCursorA
GetWindow
DestroyWindow
BeginPaint
SetTimer
SendNotifyMessageA
EndPaint
ReleaseCapture
UnregisterClassA
CreateDialogParamA
CallWindowProcA
GetDC
DrawTextA
GetClassNameA
MoveWindow
SetCapture
GetWindowRect
RegisterWindowMessageA
CreateAcceleratorTableA
EqualRect
PeekMessageA
SetFocus
CreateWindowExA
GetWindowTextA
ReleaseDC
GetParent
PostMessageA
GetWindowLongA
PostThreadMessageA
KillTimer
wsprintfA
GetFocus
FillRect
SetWindowLongA
CopyRect
GetSysColor
CharNextA
ShowWindow
InvalidateRect
SendMessageA
FindWindowA
IsWindow
GetClassInfoExA
RedrawWindow
MsgWaitForMultipleObjects
GetDesktopWindow
DefWindowProcA
SetWindowTextA
GetQueueStatus
SetRect
GetWindowTextLengthA
wvsprintfA
InvalidateRgn
DispatchMessageA
SendMessageTimeoutA
RegisterClassExA
GetActiveWindow
SetWindowPos

gdiplus

GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipDisposeImage
GdipAlloc
GdipGetImagePixelFormat
GdipFree
GdipCloneImage

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

556d63c337b4eb48e07a82708e7cfd3b

Headers

File Characteristics

Imports

setupapi

version

winmm

wininet

advapi32

shlwapi

kernel32

shell32

ole32

gdi32

user32

gdiplus

Sections

.text Size: 108KB - Virtual size: 107KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 71KB - Virtual size: 70KB

.tls Size: 1024B - Virtual size: 368KB

.text
Size: 108KB - Virtual size: 107KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 71KB - Virtual size: 70KB

.tls
Size: 1024B - Virtual size: 368KB