6529062ed0128e16fef0812ad0577094_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6529062ed0128e16fef0812ad0577094_JaffaCakes118
Size

162KB
MD5

6529062ed0128e16fef0812ad0577094
SHA1

47ac1031a481e4d3e9fd357b87f72d23c9f2d7b4
SHA256

c713f943caa3f63fa0a2e9f5e0b56ceb9d89b1bdff1d51e5feeefe4f6a486fb8
SHA512

a8587b707b1f0d75a8e54a64eeeff994cd9eafe4ac9089d756faa734197f02a7df4e1dee8f9bf94a09db4ab0381d25a40b349ef55c0c069afbd5f8dca9707794
SSDEEP

3072:3XfB73q4hh4v5fRQbJjyTRhC6I4/Xis4Ny5HQ2xn8PIIOTK0R9l8/RllsG1qaQN:/BPW5fiNjmCI/y+5HJR8PIIcKK9Kpl1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6529062ed0128e16fef0812ad0577094_JaffaCakes118

Files

6529062ed0128e16fef0812ad0577094_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7419b525a1a8301742917ca7c4668fd7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
VirtualQuery
RtlUnwind
GetCPInfo
IsBadWritePtr
HeapReAlloc
VirtualAlloc
HeapAlloc
SetStdHandle
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
QueryPerformanceCounter
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
WriteFile
CloseHandle
HeapFree
SetFilePointer
GetLastError
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeW
GetLocaleInfoA
LoadLibraryA
GetProcAddress
VirtualAllocEx
GetSystemInfo
FindClose
lstrcpynW
GlobalSize
GetExitCodeProcess
GetTempPathW
TerminateProcess
ExitProcess
GetVersionExA
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetConsoleOutputCP
FlushFileBuffers
InterlockedExchange
WideCharToMultiByte
LocalLock
GetFullPathNameW
LoadLibraryW
FormatMessageW
GetModuleFileNameW
DeleteCriticalSection
GetCurrentProcess
FileTimeToLocalFileTime
InterlockedCompareExchange
GetStringTypeA
GetOEMCP
Sleep
WaitForMultipleObjects
GetACP
GetEnvironmentStrings
VirtualProtect

user32

GetDC
DrawIcon
MoveWindow
ClientToScreen
SetWindowsHookExW
GetMenuState
UpdateWindow
ShowScrollBar
CreateCursor
CreateAcceleratorTableW
MonitorFromWindow
GetDlgItemTextW
GetMessageA
CharUpperW
IsWindowUnicode
ToAscii
EnableMenuItem
GetActiveWindow
RealChildWindowFromPoint
GetMenu
SendDlgItemMessageW
GetSystemMetrics
GetSubMenu
SetDlgItemInt
ShowWindow
InflateRect
WindowFromPoint
GetMenuStringW
GetMenuItemID
DestroyMenu
LoadIconW
DrawTextW
CreateCaret
SetWindowLongW
IsChild

gdi32

GetDeviceCaps
GetObjectW
SetTextAlign
EnumFontFamiliesExW
SetROP2
RestoreDC
Rectangle
SaveDC
ExtTextOutW
GetTextExtentPoint32W
CreateCompatibleDC
DPtoLP
DeleteDC
DeleteObject
AddFontResourceW
PatBlt
CreateHatchBrush
BitBlt

comdlg32

ChooseColorW
ChooseFontW
PageSetupDlgA
GetOpenFileNameA
ReplaceTextA
ChooseFontA
ReplaceTextW
PrintDlgW
FindTextA
GetSaveFileNameW
GetSaveFileNameA
ChooseColorA
GetOpenFileNameW
PrintDlgA
FindTextW
GetFileTitleA
PageSetupDlgW

advapi32

RegOpenKeyExA
RegCreateKeyW
RegSetValueExW
RegEnumKeyExA
RegCreateKeyExW
RegCloseKey
RegQueryValueExW
RegQueryInfoKeyA
RegDeleteValueW
RegQueryInfoKeyW
RegDeleteKeyW
RegSetValueExA
RegEnumKeyExW
RegCreateKeyA
RegOpenKeyExW
RegCreateKeyExA
RegDeleteValueA
RegDeleteKeyA

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 123KB - Virtual size: 375KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7419b525a1a8301742917ca7c4668fd7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

Sections

.text Size: 26KB - Virtual size: 26KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 123KB - Virtual size: 375KB

.rsrc Size: 4KB - Virtual size: 68KB

.text
Size: 26KB - Virtual size: 26KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 123KB - Virtual size: 375KB

.rsrc
Size: 4KB - Virtual size: 68KB