6fef046326aa5e5ab2d857faaa415a6f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6fef046326aa5e5ab2d857faaa415a6f_JaffaCakes118
Size

153KB
MD5

6fef046326aa5e5ab2d857faaa415a6f
SHA1

8643b1c93ab5fa750d5655fdcc1ffa3e3b27ab0b
SHA256

ad4c57bf6e016daa53c039732ec294dbfd99e09391f95023061f6a2d2d2f9200
SHA512

9b5706528a245466a15f9ba39294133142d35ea249583dffa4c3270e5f61a9a99eab148d1b0679f76be465a56aef7e52ea68da35d2f916c2237d45b0784a3e0e
SSDEEP

3072:0HAvHnsSNahlszprhCHdwhJL+bTQw67igQJiBPaTU8CJQvCNUFx:0HAvHsS0hoXJLf79RcTFAQvPF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6fef046326aa5e5ab2d857faaa415a6f_JaffaCakes118

Files

6fef046326aa5e5ab2d857faaa415a6f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b16f2925486c4ba84cbe1d7d6d1aa435

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

ole32

CoTaskMemFree
CoTaskMemRealloc
CoCreateInstance
CoUninitialize
CoTaskMemAlloc
CoInitialize

msvfw32

ICInfo

shell32

SHGetSpecialFolderLocation
ShellExecuteW
SHGetPathFromIDListW

kernel32

CreateFileA
IsProcessorFeaturePresent
CreateProcessW
FreeEnvironmentStringsA
GetModuleHandleA
FlushFileBuffers
lstrcmpA
CloseHandle
lstrlenA
GetTempFileNameW
LocalAlloc
InitializeCriticalSection
GetVDMCurrentDirectories
GetModuleFileNameA
WritePrivateProfileSectionW
CreateFileW
VirtualFree
GetFileAttributesW
GetStringTypeW
GetSystemTimeAsFileTime
IsDebuggerPresent
GetSystemDirectoryW
Sleep
GetCurrentThreadId
SizeofResource
TlsFree
GetLastError
GetACP
GetEnvironmentStrings
GetProcessHeap
GetVersionExW
FreeLibrary
FreeEnvironmentStringsW
InterlockedIncrement
GetFileType
LCMapStringA
WriteConsoleW
LoadLibraryW
LoadResource
WideCharToMultiByte
GetConsoleOutputCP
SetLastError
HeapAlloc
SetThreadPriorityBoost
EnterCriticalSection
TlsGetValue
VirtualAlloc
GetVersionExA
RaiseException
HeapReAlloc
GetEnvironmentStringsW
GetProcAddress
GetStdHandle
InterlockedDecrement
GetConsoleMode
GetModuleFileNameW
LoadLibraryA
HeapDestroy
DeleteFileW
ExitProcess
EnumResourceNamesW
ReadFile
WriteFile
GetFileSize
InterlockedCompareExchange
FindResourceW
GetStringTypeA
GetCurrentProcess
LeaveCriticalSection
RtlUnwind
InterlockedExchange
TerminateProcess
HeapCreate
SetFilePointer
GetTickCount
SetHandleCount
HeapSize
GetOEMCP
GetTempPathW
MulDiv
GetModuleHandleW
UnmapViewOfFile
TlsSetValue
MultiByteToWideChar
LoadLibraryExW
LocalFree
GetCommandLineA
GetCommandLineW
GetLocaleInfoA
CreateSemaphoreW
GetDriveTypeW
lstrcmpiW
SetStdHandle
CopyFileW
MapViewOfFile
FlushInstructionCache
LockResource
WaitForSingleObject
GetCPInfo
LCMapStringW
GetThreadLocale
TlsAlloc
CreateFileMappingW
GetVersion
UnhandledExceptionFilter
QueryPerformanceCounter
WriteConsoleA
SetUnhandledExceptionFilter
GetCurrentProcessId
DeleteCriticalSection
GetStartupInfoW
GetStartupInfoA
HeapFree
GetConsoleCP
lstrlenW

gdi32

CreateFontIndirectW
GetDeviceCaps
DeleteObject

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

user32

SetWindowTextW
GetWindowRect
SetDlgItemTextW
GetDC
GetDlgItemTextW
GetWindowTextLengthW
RegisterClassExW
BeginPaint
EndPaint
GetWindow
GetParent
GetClientRect
GetWindowInfo
SetCapture
DispatchMessageW
DestroyWindow
GetDlgItem
SetWindowPos
TranslateMessage
LoadCursorW
PeekMessageW
CreateWindowExW
MessageBoxW
MapWindowPoints
GetClassInfoExW
SystemParametersInfoW
EndDialog

Sections

.text
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idive
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b16f2925486c4ba84cbe1d7d6d1aa435

Headers

File Characteristics

Imports

ole32

msvfw32

shell32

kernel32

gdi32

version

user32

Sections

.text Size: 79KB - Virtual size: 79KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 67KB - Virtual size: 67KB

.idive Size: 1024B - Virtual size: 104KB

.text
Size: 79KB - Virtual size: 79KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 67KB - Virtual size: 67KB

.idive
Size: 1024B - Virtual size: 104KB