73049557bb88401fcbeb287c10319703_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

73049557bb88401fcbeb287c10319703_JaffaCakes118
Size

115KB
MD5

73049557bb88401fcbeb287c10319703
SHA1

0e2f2ded1a44f52e75309df601ad9ccc4c4e2292
SHA256

cbfb0fd232a6d1f8157005b71de783ac01d69165ecf75c8db0101e8fd2d7f45e
SHA512

9d5746e6cf8bef9fd6efefc4ab1cda8ab2fcf33834f98dbbfff6a3b1375b5afa402a786130506745959387491b387f230cbada923ed6f178c0bfac2777222ff6
SSDEEP

1536:fbKzE9gi74Qgdo2DgPUEbmHZMOltTk4rIXvrS6ZwZ0iLSXY02WiAhskRi9a0BevM:fbKn3S2DX+OleX/9yZ0ySuap00vM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73049557bb88401fcbeb287c10319703_JaffaCakes118

Files

73049557bb88401fcbeb287c10319703_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0baf33ac34c571758e873cdee6844655

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResumeThread
SetLastError
IsValidLocale
ExitProcess
GlobalAlloc
GetCurrentProcessId
SetUnhandledExceptionFilter
GlobalUnlock
GetCPInfo
TlsGetValue
CreateProcessW
GetModuleFileNameA
GetCommandLineW
GlobalLock
MoveFileW
PeekNamedPipe
IsValidCodePage
LocalUnlock
Sleep
GetFullPathNameW
lstrlenW
VirtualFree
GetCurrentThreadId
GetVersionExA
GlobalSize
SetEndOfFile
GetConsoleOutputCP
lstrcatW
GetStartupInfoA
ReadFile
WaitForMultipleObjects
GetLocaleInfoW
GetSystemTimeAsFileTime
CreateMutexW
GetTimeFormatW
LeaveCriticalSection
GetCurrentDirectoryW
InterlockedExchange
SetFileAttributesW
GetTickCount
CreateDirectoryW
ExpandEnvironmentStringsW
CreateEventW
GetDateFormatA
CreatePipe
GetLocalTime
CreateFileW
UnhandledExceptionFilter
InterlockedCompareExchange
HeapFree
QueryPerformanceCounter
FormatMessageW
lstrcpyW
CompareStringA
InitializeCriticalSection
SetHandleCount
GetVersionExW
LocalFree
HeapSize
SetCurrentDirectoryW
GlobalFree
FileTimeToSystemTime
GetSystemInfo
FindClose
lstrcpynW
VirtualAlloc
GetProcAddress
LoadLibraryA
LCMapStringW
LCMapStringA
SetStdHandle
SetFilePointer
GetLocaleInfoA
MultiByteToWideChar
GetOEMCP
GetACP
CreateFileA
CloseHandle
RtlUnwind
GetStringTypeW
GetStringTypeA
IsBadWritePtr
HeapReAlloc
HeapCreate
HeapDestroy
FlushFileBuffers
GetFileType
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
WriteFile
WideCharToMultiByte
GetLastError
VirtualQuery
VirtualProtect
HeapAlloc
GetCurrentProcess
TerminateProcess
GetCommandLineA
GetModuleHandleA

user32

AppendMenuW
IsDialogMessageA
IsWindow
GetClientRect
MessageBoxW
GetMenuStringW
TrackPopupMenu
RegisterClassExW
GetMenuItemCount
WindowFromPoint
EndDialog
BeginDeferWindowPos
LoadBitmapW
DeferWindowPos
DrawFrameControl
DestroyCaret
GetMenu
MoveWindow
GetKeyboardState
RegisterWindowMessageW
OpenClipboard
InsertMenuW
SetScrollInfo
CallWindowProcW
RegisterClassW
UnhookWindowsHookEx
IsWindowUnicode
GetDlgItemInt
ToAscii
FillRect
GetCursorPos
DeleteMenu
ModifyMenuW
LoadMenuW
DestroyAcceleratorTable
ClientToScreen
CharUpperW
CloseClipboard
InflateRect
CreateDialogIndirectParamW
SystemParametersInfoW
DialogBoxParamW
GetSystemMetrics
GetMenuState
SetWindowTextW
ScrollWindow
ScreenToClient
PostQuitMessage
SetWindowPos
TranslateMessage
CreateMenu
PeekMessageW
SetDlgItemTextW
CharLowerW
UpdateWindow
InsertMenuItemW

comdlg32

PrintDlgA
GetFileTitleA
PageSetupDlgW
GetOpenFileNameA
ChooseFontA
PageSetupDlgA
PrintDlgW
FindTextA
GetFileTitleW

ole32

StgOpenStorage
StgOpenAsyncDocfileOnIFillLockBytes

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0baf33ac34c571758e873cdee6844655

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

ole32

Sections

.text Size: 36KB - Virtual size: 36KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 65KB - Virtual size: 85KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 36KB - Virtual size: 36KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 65KB - Virtual size: 85KB

.rsrc
Size: 4KB - Virtual size: 4KB