73bdd3a42dcdb4d77ddb31292a0ced0e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

73bdd3a42dcdb4d77ddb31292a0ced0e_JaffaCakes118
Size

344KB
MD5

73bdd3a42dcdb4d77ddb31292a0ced0e
SHA1

37c870aa5fcf4d820efbfe6dd91c9bb6f85fbb10
SHA256

8fa9612ba5571e7a3c3b01ff7bc982aedec52e8341dabc3b3d73b6d843d07f61
SHA512

f3b9b390c446e71088f338bf7c0f70f2c20a852bc4958d512eb7b3f8aa6c965706423d416bcd739288670e85246a739d35821fbb8562b3b8b767fb428969d6ab
SSDEEP

6144:mJLCb+Y8/bzB4tEODq54tPRxkHXsU7IKdp/OclTJVWguPN0RqFF:8Cb+vXBuDS4tPRQsUkKdp/OCTJLq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73bdd3a42dcdb4d77ddb31292a0ced0e_JaffaCakes118

Files

73bdd3a42dcdb4d77ddb31292a0ced0e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

419439cffa065c332a613984e0913f4c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
GetCommandLineA
HeapSize
GetCPInfo
GetCommandLineW
SetFileTime
LockResource
GetCurrentProcessId
GetEnvironmentStrings
CreateProcessW
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
HeapCreate
LCMapStringW
LoadLibraryExW
GetLastError
LeaveCriticalSection
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
WaitForMultipleObjects
DuplicateHandle
RemoveDirectoryA
FindNextFileA
CreateFileMappingA
ResetEvent
CompareStringA
FindFirstFileA
lstrcmpA
CompareStringW
GetProcessHeap
GetSystemInfo
GetProcAddress
DeleteFileW
SetEvent
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
GetFileSize
LoadLibraryA
GetVersionExA
TlsAlloc
IsBadWritePtr
GetTickCount
QueryPerformanceCounter
FreeLibrary
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
GetCurrentThreadId
CreateEventW
RaiseException
GlobalAlloc
GetVersion
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
GetStartupInfoA
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
GetLocalTime
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
FlushFileBuffers
ExitProcess
IsDebuggerPresent
GetModuleFileNameW
GetEnvironmentVariableA
GetSystemTime
SetLastError
FormatMessageA
TlsGetValue
FindClose
FindFirstFileW
LoadResource
InitializeCriticalSection
InterlockedCompareExchange
GetExitCodeProcess
FormatMessageW
LocalFree
GetOEMCP
SetFileAttributesA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
LoadLibraryW
WideCharToMultiByte
GetTempPathA
SetStdHandle
FreeEnvironmentStringsW
SetErrorMode
ExpandEnvironmentStringsA
lstrcatA
LocalAlloc
GetLocaleInfoA
GetCurrentDirectoryA
GetStartupInfoW
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
HeapDestroy
SetEndOfFile
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
MapViewOfFile
TlsFree
SetFilePointer
ReadFile
CloseHandle
lstrcpynA
GetACP
GlobalLock
GetModuleHandleW
SizeofResource
CreateProcessA
lstrcmpiW
UnmapViewOfFile
VirtualQuery
VirtualFree
Sleep
FindResourceA
GetConsoleMode
VirtualAlloc

oleaut32

VariantClear
SysAllocStringLen
SysFreeString
VariantInit
SysAllocString
SysStringLen

user32

PeekMessageA
SetFocus
EndPaint
ReleaseDC
SetTimer
GetSubMenu
RegisterClassA
IsIconic
LoadStringA
GetWindow
IsWindowEnabled
TranslateMessage
EnableWindow
ShowWindow
UpdateWindow
GetParent
DestroyWindow
ScreenToClient
MoveWindow
ReleaseCapture
BeginPaint
DispatchMessageA
IsWindow
SetWindowPos
PostQuitMessage
SetForegroundWindow
DispatchMessageW
PostMessageA
SystemParametersInfoA
PtInRect
IsWindowVisible
DrawTextA
GetFocus
InvalidateRect
SendMessageA
GetClientRect
CallWindowProcA
SetWindowLongA
SetWindowTextA
CheckMenuItem
SetCursor
DefWindowProcA
MapWindowPoints
GetSystemMetrics
EnableMenuItem
GetWindowRect
GetDC
SetCapture
GetWindowLongA
CreateWindowExA
GetDlgItem
ClientToScreen
LoadCursorA
LoadIconA
TrackPopupMenu
GetDesktopWindow
EndDialog
FillRect
SetDlgItemTextA
MessageBoxA
DialogBoxParamA
GetCursorPos
GetSysColor

gdi32

SetBkColor
DeleteObject
GetDeviceCaps
DeleteDC
CreateCompatibleDC
SetTextColor
SelectObject
BitBlt
CreateCompatibleBitmap
SetBkMode

ole32

CoCreateInstance
CoUninitialize

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegQueryValueExW
RegDeleteValueA
RegSetValueExA
RegCloseKey

msvcrt

_strcmpi
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_cexit
_controlfp
_except_handler3

Sections

.text
Size: 320KB - Virtual size: 316KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

419439cffa065c332a613984e0913f4c

Headers

File Characteristics

Imports

kernel32

oleaut32

user32

gdi32

ole32

advapi32

msvcrt

Sections

.text Size: 320KB - Virtual size: 316KB

.data Size: 8KB - Virtual size: 6KB

.rsrc Size: 12KB - Virtual size: 10KB

.text
Size: 320KB - Virtual size: 316KB

.data
Size: 8KB - Virtual size: 6KB

.rsrc
Size: 12KB - Virtual size: 10KB