668362c137735d6084c570514f806221_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

668362c137735d6084c570514f806221_JaffaCakes118
Size

257KB
MD5

668362c137735d6084c570514f806221
SHA1

ee12d9e00fb8e1a5a5695a5caf2e9fd0ce87027a
SHA256

9b58465ea74de6fe5144dea6a8865891a0bede5f2caaf2b41e3c533c62f332fd
SHA512

f4cb0f9f054d4374e92244fd32af363cd1538b32b582d37db10ae00df8f1e0f1b6f6ebb3eeffde187a6f6439edc0da4818d5a215103a1c55cf0224f4af7c1738
SSDEEP

3072:1icFgFSqXNa0s3o2MV2SwcfjUGkmj1AWFhGIhtrJG+2ozcQU8gh1yhw7yds5VLGM:0XNNSo2EscAxmpDGIhtrTpUpH15WJS3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
668362c137735d6084c570514f806221_JaffaCakes118

Files

668362c137735d6084c570514f806221_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7af25957aac184cede8a4d48ab7d2464

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
GetLastError
GetTickCount
GetCurrentProcess
MultiByteToWideChar
GetSystemDirectoryW
GetVersionExA
GetProcessHeap
GetStartupInfoW
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleA
TlsAlloc
GetCurrentThreadId
HeapCreate
ExitProcess
GetModuleFileNameA
GetEnvironmentStringsW
GetStartupInfoA
QueryPerformanceCounter
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
Sleep
GetLocaleInfoA
InitializeCriticalSection
LoadLibraryA
CreateMutexA
GetProcAddress

user32

GetSystemMetrics
SetTimer
LoadCursorA
LoadMenuIndirectA
SetWindowTextW
GetDlgItemTextW
keybd_event
WaitMessage
ActivateKeyboardLayout
EndMenu
MoveWindow
MonitorFromRect
GetDlgItemInt
LoadCursorW
InsertMenuA
MessageBeep
GetMenu
SetWindowPos
GetKeyboardLayout
LoadMenuA
GetDesktopWindow
EnableMenuItem
LoadBitmapA
CharUpperW
SetWindowLongW
CharNextW
RegisterClassExA
CreateDesktopW
SetFocus
DialogBoxIndirectParamA
RegisterClassExW
MonitorFromWindow
GetCapture
IsDlgButtonChecked
GetClassInfoW
wsprintfA
RegisterClassW
TrackPopupMenuEx
MessageBoxA
GetCursorPos
MonitorFromPoint
CharLowerA
AdjustWindowRect
CreateDialogIndirectParamW
GetIconInfo
UnregisterClassW
GetKeyboardType
GetCaretPos

advapi32

RegSetValueExW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegDeleteKeyW
CloseServiceHandle
StartServiceW
OpenServiceW
OpenSCManagerW

usp10

ScriptGetGlyphABCWidth
ScriptStringFree
ScriptShape
ScriptGetLogicalWidths
ScriptItemize
ScriptCacheGetHeight

gdi32

AddFontResourceW
GetStockObject
CreateFontIndirectExW
CreateScalableFontResourceW
CreateICW
CreateCompatibleDC
GetMetaFileA
GetEnhMetaFilePixelFormat
CreateMetaFileW
CreateSolidBrush
RemoveFontResourceExA
CreateBrushIndirect

rasppp

RasCpEnumProtocolIds

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 1KB - Virtual size: 477KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 109KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 109KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7af25957aac184cede8a4d48ab7d2464

Headers

File Characteristics

Imports

kernel32

user32

advapi32

usp10

gdi32

rasppp

Sections

.text Size: 17KB - Virtual size: 17KB

.text Size: 1KB - Virtual size: 477KB

.rdata Size: 3KB - Virtual size: 16KB

.edata Size: 109KB - Virtual size: 162KB

.rdata Size: 4KB - Virtual size: 95KB

.data Size: 8KB - Virtual size: 97KB

.edata Size: 109KB - Virtual size: 143KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 17KB - Virtual size: 17KB

.text
Size: 1KB - Virtual size: 477KB

.rdata
Size: 3KB - Virtual size: 16KB

.edata
Size: 109KB - Virtual size: 162KB

.rdata
Size: 4KB - Virtual size: 95KB

.data
Size: 8KB - Virtual size: 97KB

.edata
Size: 109KB - Virtual size: 143KB

.rsrc
Size: 3KB - Virtual size: 2KB