615091c25fe32f7895fa260f37b8c5ad_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

615091c25fe32f7895fa260f37b8c5ad_JaffaCakes118
Size

588KB
MD5

615091c25fe32f7895fa260f37b8c5ad
SHA1

9a5b1071316af2daa20ac8f5f7932a708faa82ba
SHA256

1ed3c6134306d2651ba5d0497041b0525808e839617f4eeb6035d21bbdbdddd0
SHA512

ce0110e9311ec56791b23b7e1e09ac0ecba6ddf9d9259c49c5d9e32e95f402187b620e417b2e7bf1d008e7dcb36b03a0b2c16a47673cbf35156d686e16e1cb8d
SSDEEP

12288:8SZMgx04PKBCYX/8qJtGihYRDSJzg/R09An1AzEcph49ZZ+xEsaN1HzxwGodB4Kj:hMtGihCDSJzg/R09An1AzEcph49ZZ+x3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
615091c25fe32f7895fa260f37b8c5ad_JaffaCakes118

Files

615091c25fe32f7895fa260f37b8c5ad_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5359edd20e8eba88e5a5d53278adc362

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
SetThreadPriority
CreateEventA
Sleep
GetCommTimeouts
GetCommState
GetTickCount
SetCommTimeouts
ResumeThread
SetupComm
PurgeComm
TerminateThread
GetVersion
GetOverlappedResult
GetLastError
lstrcmpA
lstrcatA
lstrlenA
GetModuleFileNameA
SetCommState
GetLocalTime
DeleteFileA
WinExec
FindNextFileA
SetFilePointer
FindFirstFileA
CreateFileA
GetFileSize
ReadFile
GetCurrentDirectoryA
WriteFile
CloseHandle
WaitCommEvent
lstrcpynA
SetCommMask
ExitThread
LoadLibraryA
HeapReAlloc
VirtualAlloc
GetOEMCP
GetACP
GetCPInfo
HeapAlloc
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
SetStdHandle
FreeEnvironmentStringsA
lstrcpyA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetProcAddress
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
ExitProcess
GetCommandLineA
GetStartupInfoA
LCMapStringA
LCMapStringW
FlushFileBuffers
GetModuleHandleA

user32

ModifyMenuA
SetRect
GetParent
IsMenu
DestroyMenu
LoadStringA
EndDialog
PostQuitMessage
SetWindowPos
MessageBoxA
LoadMenuA
GetSubMenu
DrawTextA
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
IsWindow
ShowWindow
UpdateWindow
LoadAcceleratorsA
GetMessageA
PostMessageA
DestroyWindow
InvalidateRect
SendMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
SetFocus
GetClientRect
CallWindowProcA
RemoveMenu
InsertMenuA
BeginPaint
EndPaint
KillTimer
LoadBitmapA
GetDC
ClientToScreen
GetWindowRect
TrackPopupMenu
ReleaseCapture
wsprintfA
SetWindowLongA
EnableWindow
GetDlgItem
CheckRadioButton
SetWindowTextA
SetDlgItemTextA
IsDlgButtonChecked
CheckDlgButton
IsWindowVisible
GetDlgItemInt
SetDlgItemInt
GetDlgItemTextA
SendDlgItemMessageA
SetWindowRgn
GetActiveWindow
DefWindowProcA
DialogBoxParamA
ReleaseDC
SetCapture
SetTimer

gdi32

GetStockObject
DeleteObject
SetBkMode
CreateFontA
TextOutA
SetTextColor
SelectObject
BitBlt
GetObjectA
DeleteDC
Rectangle
CreateSolidBrush
CreateCompatibleDC
LineTo
MoveToEx
CreatePen
CreatePolygonRgn

comdlg32

GetSaveFileNameA
GetOpenFileNameA

comctl32

ord17
PropertySheetA
CreatePropertySheetPageA

Sections

.text
Size: 144KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 254KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 264KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5359edd20e8eba88e5a5d53278adc362

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

comctl32

Sections

.text Size: 144KB - Virtual size: 140KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 254KB

.rsrc Size: 264KB - Virtual size: 260KB

.text
Size: 144KB - Virtual size: 140KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 254KB

.rsrc
Size: 264KB - Virtual size: 260KB