658d6a6604381a296e201b63ce8b80aa_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

658d6a6604381a296e201b63ce8b80aa_JaffaCakes118
Size

338KB
MD5

658d6a6604381a296e201b63ce8b80aa
SHA1

7178abf23caea999d62d7e679dcaf4f6c5311106
SHA256

dd89ed152179a1c46993f3c79478309672ee25c85450b8a741651ee7887d7c16
SHA512

b59e8fa42d49180184e310c59bcc3b4249878ea055d8bc7ebeafb5d0cfae467507d57300d5c95d32bb1e001e8d95ef5a9effcae47ff0b4d2696a297ae7e5dda7
SSDEEP

6144:9z48GgsSnX9FI8fHU7JCGDQ1N6qaobLNBuFZmxZAhEI:F48yKI8fHUtCGwN6qDBuqZAhE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
658d6a6604381a296e201b63ce8b80aa_JaffaCakes118

Files

658d6a6604381a296e201b63ce8b80aa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f3a0c9cd4de642b329f11fd8c5202726

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
CompareStringA
CopyFileA
GetACP
CreateFileW
GetStringTypeA
SetHandleCount
GetCurrentThreadId
GetCurrentDirectoryA
GetStartupInfoA
GetConsoleCP
GetCurrentProcess
LeaveCriticalSection
TerminateProcess
TlsGetValue
LoadLibraryA
GetOEMCP
GetModuleFileNameW
WriteConsoleInputW
GetAtomNameW
GetCurrentThread
LockResource
WritePrivateProfileStructW
GetModuleFileNameA
QueryPerformanceCounter
GetTimeFormatA
CompareStringW
GetVersionExA
FreeEnvironmentStringsW
TlsSetValue
WriteFile
GetProfileIntA
VirtualFree
GetDateFormatA
ReleaseMutex
FreeEnvironmentStringsA
GetPriorityClass
CreateDirectoryA
InitializeCriticalSection
ResetEvent
WideCharToMultiByte
SetConsoleWindowInfo
GetLastError
GetEnvironmentStringsW
TlsFree
GetCurrentProcessId
GetStringTypeW
IsBadWritePtr
VirtualAlloc
GetStdHandle
SetLastError
GetSystemTimeAsFileTime
HeapFree
GetLocaleInfoW
HeapAlloc
GetShortPathNameW
GetUserDefaultLCID
GetCurrencyFormatA
FlushFileBuffers
OpenWaitableTimerA
EnterCriticalSection
GetCommandLineA
GetEnvironmentStrings
DebugBreak
GetModuleHandleA
FileTimeToSystemTime
GetTimeZoneInformation
GetCPInfo
UnhandledExceptionFilter
SetEnvironmentVariableA
DeleteCriticalSection
IsValidCodePage
IsValidLocale
ExitProcess
GetFileType
CreateEventA
MultiByteToWideChar
ReadConsoleOutputCharacterW
LCMapStringW
DeleteFileA
GetTickCount
SetConsoleActiveScreenBuffer
GetStartupInfoW
LCMapStringA
ReadFile
EnumSystemLocalesA
VirtualProtect
ContinueDebugEvent
GetSystemInfo
CloseHandle
ReadConsoleOutputCharacterA
HeapSize
GetCommandLineW
CreateMutexA
GlobalUnlock
MapViewOfFile
InterlockedExchange
GetLocaleInfoA
FoldStringA
HeapDestroy
WaitCommEvent
HeapReAlloc
SetFilePointer
GetPrivateProfileStringA
OpenMutexA
GetCompressedFileSizeA
GetSystemDirectoryW
GetExitCodeProcess
LockFileEx
SetStdHandle
GetSystemDefaultLCID
Sleep
RtlUnwind
HeapCreate
TlsAlloc
FlushConsoleInputBuffer
VirtualQuery

user32

DefWindowProcW
RegisterClassExA
PeekMessageW
SetShellWindow
MessageBoxW
LoadIconW
RegisterClassA
CreateWindowExW
ShowWindow
DestroyCursor
LoadKeyboardLayoutA
GetMenuInfo
AnyPopup
BeginDeferWindowPos
SetClipboardViewer
DestroyWindow
CreateWindowExA
SetFocus
DefWindowProcA
LoadBitmapA
GetAncestor

comdlg32

PrintDlgA

gdi32

GetObjectA
DeleteObject
GetDeviceCaps
DeleteDC
CreateDCW
RealizePalette
GetGraphicsMode
GetTextExtentExPointA
SetDIBits
FlattenPath
SelectObject

comctl32

ImageList_Replace
InitCommonControlsEx

Sections

.text
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 89KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f3a0c9cd4de642b329f11fd8c5202726

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

gdi32

comctl32

Sections

.text Size: 142KB - Virtual size: 141KB

.rdata Size: 68KB - Virtual size: 68KB

.data Size: 89KB - Virtual size: 97KB

.rsrc Size: 37KB - Virtual size: 37KB

.text
Size: 142KB - Virtual size: 141KB

.rdata
Size: 68KB - Virtual size: 68KB

.data
Size: 89KB - Virtual size: 97KB

.rsrc
Size: 37KB - Virtual size: 37KB