68c4ca3c6f1e8c11d4b5e10ce177d3a8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

68c4ca3c6f1e8c11d4b5e10ce177d3a8_JaffaCakes118
Size

312KB
MD5

68c4ca3c6f1e8c11d4b5e10ce177d3a8
SHA1

2726d2385dee25bdf8d50103f5afc048ce9103d1
SHA256

b6850ff26e7797a7eb88a1070417e29f49c2006b3ca0b5c6fd1ae28f898abaf7
SHA512

0a625d9b6ec703c6026a2d8a25fe1faf8823db77cf254b6d4b1c7f87bdfb8e713ea4b8b8a82cae396bce6224ebc9f5b5f6a3d2389888f9d5802993822fcdd396
SSDEEP

6144:EEdn7smkywgyhqcQ8SJCu4AZMEX7sytk0u0IFXfV6cC3EhWwie2UE:PdYywXZSQ/xEnfIFX9PMuWwiS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
68c4ca3c6f1e8c11d4b5e10ce177d3a8_JaffaCakes118

Files

68c4ca3c6f1e8c11d4b5e10ce177d3a8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd382b5f3f71d43a81cd7547a4d08ce4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
GetDriveTypeW
GetTickCount
SetEndOfFile
GetLastError
GetFileAttributesExW
LoadLibraryW
VirtualAlloc
InterlockedIncrement
WaitForMultipleObjects
SetWaitableTimer
CreateThread
FindClose
CreateProcessW
ExitProcess
FreeLibrary
GetProcessHeap
HeapAlloc
HeapFree
HeapSize
IsBadReadPtr
LoadLibraryA
VirtualFree
VirtualProtect
GetFileAttributesW
GlobalAddAtomW
InterlockedDecrement
GetLogicalDrives
FileTimeToSystemTime
FindResourceExW
FindFirstFileW
WriteFile
GetPrivateProfileStringW
WideCharToMultiByte
GetCurrentProcessId
GetUserDefaultLangID
TerminateThread
GlobalLock
GetProcAddress
GetFileSize
LockResource
SetThreadPriority
lstrlenW
SizeofResource
FreeResource
WritePrivateProfileStringW
WaitForSingleObject
SetFilePointer
FindResourceW

user32

UpdateWindow
CreatePopupMenu
GetMessageW
GetWindowTextW
PostMessageW
DispatchMessageW
LoadBitmapW
VkKeyScanW
wsprintfW
TrackPopupMenu
EndDialog
SetCapture
AppendMenuW
LoadImageW
PostQuitMessage
LoadStringW
SendDlgItemMessageW
GetClassNameW
SetForegroundWindow
SetLayeredWindowAttributes
SetCursor
OffsetRect
GetDlgItem
SetDlgItemTextW
DialogBoxParamW
GetSystemMetrics
TranslateMessage
IsWindow
GetWindowThreadProcessId
GetSysColor
RedrawWindow
DefWindowProcW
PostThreadMessageW
ReleaseDC
IsDlgButtonChecked

gdi32

CreateFontIndirectW
GetClipBox
SetDIBits
GetMapMode
DeleteObject
MoveToEx
StretchBlt
CreateCompatibleDC
CreateSolidBrush
BitBlt
LineTo
CreateBitmap
CreateRoundRectRgn
DPtoLP
GetDeviceCaps
CreateCompatibleBitmap
SetBkMode
CreateICW

advapi32

RegDeleteValueW
InitializeSecurityDescriptor
StartServiceW
RegNotifyChangeKeyValue
LookupAccountSidW

shell32

SHChangeNotify
Shell_NotifyIconW

ole32

CoUninitialize
CreateStreamOnHGlobal

oleaut32

SysFreeString
OleLoadPicture

Sections

.text
Size: 276KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bd382b5f3f71d43a81cd7547a4d08ce4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 276KB - Virtual size: 272KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 28KB - Virtual size: 24KB

.text
Size: 276KB - Virtual size: 272KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 28KB - Virtual size: 24KB