649148bfdebbe535a6be07d964308fbb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

649148bfdebbe535a6be07d964308fbb_JaffaCakes118
Size

100KB
MD5

649148bfdebbe535a6be07d964308fbb
SHA1

3baf23e83dca16a5843c731b15f9d51718a35dfa
SHA256

c7f6729bf39ce1096671037e1f5851151611b26af6cd96c80d92a3af7d932503
SHA512

887262e9b3bf075e24ca36f773e9509c7bda36455f79d22c981e1c5f702854d964c3640206b475f6d542757fa5af1f4263bffeddadd4b6307e464ba6a3e107ef
SSDEEP

1536:aSzggSrM5784HfFYVeJK3Lo5gTroAlij:abQJ8owego5oroaG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
649148bfdebbe535a6be07d964308fbb_JaffaCakes118

Files

649148bfdebbe535a6be07d964308fbb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

80715e294486d50bfc79db0a2318e5de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
lstrcpynA
LocalFree
FormatMessageA
GetLastError
SetFilePointer
CreateFileA
GetFileSize
lstrcmpiA
ReadFile
WriteFile
DeleteFileA
FindClose
FindNextFileA
GetDateFormatA
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
lstrcmpA
SetCurrentDirectoryA
ReleaseMutex
GetModuleFileNameA
GetModuleHandleA
CreateMutexA
SetLastError
GetDriveTypeA
LoadLibraryA
GetProcAddress
SetEnvironmentVariableA
GetOEMCP
GetACP
CompareStringA
GetCPInfo
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
GetCurrentProcess
TerminateProcess
WideCharToMultiByte
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
HeapAlloc
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapFree
CloseHandle
lstrcpyA
GetFullPathNameA
GetCurrentThreadId
CompareStringW
GetCurrentDirectoryA

user32

DialogBoxParamA
GetDC
ReleaseDC
CreateWindowExA
RegisterClassA
GetClassInfoA
GetClientRect
MoveWindow
GetDlgItemInt
SetDlgItemInt
FindWindowA
UnregisterClassA
DefWindowProcA
SendMessageA
SetWindowPos
SystemParametersInfoA
GetWindowRect
IsWindowVisible
GetParent
UnhookWindowsHookEx
MessageBoxA
SetWindowsHookExA
GetWindowLongA
wvsprintfA
PostMessageA
wsprintfA
SetTimer
KillTimer
GetDlgItem
MessageBeep
DestroyWindow
GetDialogBaseUnits
WinHelpA
DestroyIcon
GetSystemMenu
CheckMenuItem
LoadIconA
SetClassLongA
AppendMenuA
SetWindowLongA
GetSystemMetrics
GetCursorPos
TrackPopupMenu
SetForegroundWindow
CreateDialogParamA
GetDlgItemTextA
EnableWindow
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
InvalidateRect
GetWindowTextA
SetWindowTextA
ShowWindow
MapDialogRect

gdi32

LPtoDP
GetTextExtentPoint32A

shell32

SHBrowseForFolderA
SHGetPathFromIDListA
Shell_NotifyIconA

advapi32

RegDeleteKeyA
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA

wsock32

WSACleanup
WSAStartup
gethostname
WSAAsyncGetHostByName
sendto
gethostbyname
connect
recvfrom
WSAGetLastError
inet_addr
ioctlsocket
closesocket
send
ntohs
recv
WSAAsyncSelect
socket
htons
bind

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

smfiauo
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

80715e294486d50bfc79db0a2318e5de

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

wsock32

Sections

.text Size: 40KB - Virtual size: 37KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 12KB - Virtual size: 15KB

.rsrc Size: 36KB - Virtual size: 36KB

smfiauo Size: - Virtual size: 4KB

.text
Size: 40KB - Virtual size: 37KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 12KB - Virtual size: 15KB

.rsrc
Size: 36KB - Virtual size: 36KB

smfiauo
Size: - Virtual size: 4KB