69c6b10e7455f947b0a695ad4949d679_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

69c6b10e7455f947b0a695ad4949d679_JaffaCakes118
Size

564KB
MD5

69c6b10e7455f947b0a695ad4949d679
SHA1

8dde40dd86e47ac2ae3b105e8de9dbbc8a130641
SHA256

6368a3f06ac3961b474c10935e919df6995e21aa2de73ef7900be8060995e05c
SHA512

55708fbb85ed2f101b7735ebf0c588f1d10e8f90bf9d6c8286d5462b6cf4941191886d40e6971ecb0c422a5b7235043197219bfbd3b41d34b92a74c7011ea7d0
SSDEEP

12288:J1gp9+8szSJfyhfpMnofbSO1J/qthMKopZZcR8GEYnOVHFt:J7gnXOfMIGVCf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69c6b10e7455f947b0a695ad4949d679_JaffaCakes118

Files

69c6b10e7455f947b0a695ad4949d679_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9e082fcde43084bc056117784ee42696

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostQuitMessage
SetWindowPos
IsWindow
DispatchMessageA
GetDC
ReleaseDC
ScreenToClient
GetActiveWindow
ShowWindow
SetCapture
EnableWindow
PeekMessageA
TranslateMessage
GetWindow
SetForegroundWindow
IsIconic
GetSubMenu
SetTimer
FillRect
EndPaint
SetFocus
DefWindowProcA
GetSystemMetrics
GetWindowRect
PostMessageA
ReleaseCapture
SetWindowLongA
SetWindowTextA
CreateWindowExA
ClientToScreen
LoadCursorA
LoadIconA
TrackPopupMenu
GetDesktopWindow
SetDlgItemTextA
MessageBoxA
GetSysColor
SendMessageA
GetClientRect
CallWindowProcA
SetCursor

advapi32

RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW

kernel32

RtlUnwind
GetEnvironmentVariableA
GetStdHandle
GetConsoleOutputCP
FileTimeToSystemTime
GetFileAttributesA
WaitForSingleObject
GetDriveTypeA
HeapDestroy
GetFileAttributesW
GetCommandLineW
DeleteCriticalSection
GetCurrentProcess
GetCurrentDirectoryA
GetLocaleInfoA
LocalAlloc
SetErrorMode
FreeEnvironmentStringsW
GetLocaleInfoW
GetTempPathA
GetCPInfo
GetStringTypeA
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
FreeLibrary
FreeEnvironmentStringsA
VirtualAlloc
Sleep
VirtualFree
HeapCreate
IsValidCodePage
CreateProcessA
SizeofResource
SetStdHandle
GetModuleHandleW
GetACP
CloseHandle
SetUnhandledExceptionFilter
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
WideCharToMultiByte
SetFileTime
LockResource
GetCurrentProcessId
GetEnvironmentStrings
FileTimeToLocalFileTime
lstrlenW
VirtualQuery
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
FindResourceW
GetConsoleCP
lstrlenA
GetSystemInfo
LCMapStringW
LoadLibraryExW
GetLastError
InterlockedIncrement
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
CreateEventW
WaitForMultipleObjects
DuplicateHandle
FindNextFileA
CreateFileMappingA
CompareStringA
FindFirstFileA
lstrcmpA
CompareStringW
GetProcessHeap
GetProcAddress
DeleteFileW
SetEvent
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
GetTickCount
QueryPerformanceCounter
GetOEMCP
GetVersionExW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
LeaveCriticalSection
GetCurrentThreadId
SetEndOfFile
GetConsoleMode
GlobalAlloc
GetVersion
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
CreateThread
GetModuleHandleA
CreateMutexA
MultiByteToWideChar
UnhandledExceptionFilter
LoadLibraryExA
lstrcmpiW
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
VirtualProtect
GetModuleFileNameW
TlsGetValue
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
GlobalLock
LoadResource
InitializeCriticalSection
GetExitCodeProcess
FormatMessageW
LocalFree

gdi32

DeleteDC
GetDeviceCaps
BitBlt
CreateCompatibleDC
GetStockObject

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 538KB - Virtual size: 538KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9e082fcde43084bc056117784ee42696

Headers

File Characteristics

Imports

user32

advapi32

kernel32

gdi32

Sections

.text Size: 22KB - Virtual size: 22KB

.data Size: 538KB - Virtual size: 538KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 22KB - Virtual size: 22KB

.data
Size: 538KB - Virtual size: 538KB

.rsrc
Size: 2KB - Virtual size: 1KB