7404fea040e78a894fc3303701f2b661_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

7404fea040e78a894fc3303701f2b661_JaffaCakes118
Size

149KB
MD5

7404fea040e78a894fc3303701f2b661
SHA1

9facba8a3f75f6d6feb0f84804b070b06c38e591
SHA256

b6728aa852934359b89da59306b1bb2c2522bb12bf88e267523dd0add42ea661
SHA512

d5a3a030514d070426fbe6995c5b8d188532cc59e3332baf419df4b8d188c971b54c3e0998aee674635d5dcdd526b079bd2f22cc6d6db89c89af54df7cd76a35
SSDEEP

3072:urr69GV+RPKSmY2GjBGIBSUuo1dF21AEtrB2CyUzWxJTB/opn3:er691r92WBDSnTtrLzwBK3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7404fea040e78a894fc3303701f2b661_JaffaCakes118

Files

7404fea040e78a894fc3303701f2b661_JaffaCakes118
.exe windows:4 windows x86 arch:x86

87f7643a98bee50301e1040ba1c3186e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_lseeki64
malloc
__getmainargs
_errno
__dllonexit
sscanf
_wcslwr
tolower
towupper
_strdup
_CIacos
bsearch
_onexit
memset
_beginthreadex
_ltoa
_wtoi
fseek
_wfopen
_wtol
printf
qsort
wcscpy
fread
time

user32

BeginPaint
MessageBeep
DialogBoxParamW
RegisterClassA
CheckRadioButton
IsDlgButtonChecked
SendDlgItemMessageW
LoadIconA
UnregisterClassW
SetWindowTextW
GetWindowTextLengthW
DrawFocusRect
PeekMessageA
GetDlgCtrlID
GetWindowRect
EndPaint
CharNextA
InflateRect
CharLowerW
wsprintfW
InsertMenuA
OffsetRect
RegisterWindowMessageW
DialogBoxParamA
wsprintfA
MessageBoxW
CreateWindowExA
CheckDlgButton
GetAsyncKeyState
ScreenToClient
SetWindowLongA
GetMessageA
CallWindowProcW
GetSystemMetrics
SetWindowTextA
GetDlgItemTextA
RegisterClassW
TrackPopupMenu
IntersectRect
MsgWaitForMultipleObjects
GetWindowPlacement
GetWindowTextW
ShowWindow
ClientToScreen
LoadBitmapA
LoadIconW
IsIconic

kernel32

HeapFree
GetCommandLineW
GetFileSize
GetSystemDirectoryA
QueryPerformanceCounter
GetCurrentThreadId
FindFirstFileA
IsDebuggerPresent
GetCurrentProcess
GetCPInfo
GetThreadLocale
CompareStringA
TlsAlloc
CreateProcessA
GetVersion
FlushFileBuffers
TlsFree
VirtualAlloc
SystemTimeToFileTime
GlobalLock
CloseHandle
GetLastError
LCMapStringA
GetExitCodeThread
GetComputerNameW
GetCommandLineA
GetDriveTypeW
Sleep
GetACP
OpenMutexA
OutputDebugStringA
HeapReAlloc
SetFileAttributesW
GetWindowsDirectoryA
LeaveCriticalSection
HeapCreate
lstrcpyA
SetLastError
GetVersionExA
GlobalAlloc
SetUnhandledExceptionFilter
FindResourceA
ExitProcess
GetOEMCP
OpenEventW
WideCharToMultiByte
lstrcmpiA
lstrlenA
GetEnvironmentStrings
GetStdHandle
GetFileAttributesW
GetTempPathA
ResumeThread
GetUserDefaultLCID
GetModuleFileNameA
WriteConsoleW
GetSystemTimeAsFileTime

Sections

.text
Size: 145KB - Virtual size: 145KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 1024B - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textbss
Size: 512B - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 492B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

87f7643a98bee50301e1040ba1c3186e

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

user32

kernel32

Sections

.text Size: 145KB - Virtual size: 145KB

.tls Size: 512B - Virtual size: 50KB

BSS Size: 1024B - Virtual size: 51KB

.textbss Size: 512B - Virtual size: 50KB

.rsrc Size: 512B - Virtual size: 492B

.text
Size: 145KB - Virtual size: 145KB

.tls
Size: 512B - Virtual size: 50KB

BSS
Size: 1024B - Virtual size: 51KB

.textbss
Size: 512B - Virtual size: 50KB

.rsrc
Size: 512B - Virtual size: 492B