75bf3cf239fc4b6e30ea0ac65d5ec1b4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

75bf3cf239fc4b6e30ea0ac65d5ec1b4_JaffaCakes118
Size

114KB
MD5

75bf3cf239fc4b6e30ea0ac65d5ec1b4
SHA1

7b7ae7475f6ad14a6018c9972e4f43f856f6754a
SHA256

d862b2c582d06a1f7fe2e1279926fadb43b13e21b563ebbac38fcaefb34667c5
SHA512

9b751eaf439076790df6034d20f7180c6226791dabbf4844645181cac6d3c1e1e5a9c3bd229cafdb60a420ec8939a04c8e6e4ad4c7d9f6ce41d4b22ab1d64a87
SSDEEP

3072:74u29D9hraeAI7xJko09m/anzKEawbpfRVERQ+PL6v/w7:7a96KPko0Y/+rxTERQ+Pw/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75bf3cf239fc4b6e30ea0ac65d5ec1b4_JaffaCakes118

Files

75bf3cf239fc4b6e30ea0ac65d5ec1b4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

43b888a51a825db244674676cf4c4e74

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
lstrcatA
GetUserDefaultLCID
LoadLibraryA
GetStringTypeA
InitializeCriticalSection
GetCommandLineA
ResetEvent
GetFullPathNameA
GetModuleHandleW
GetACP
GetLocalTime
WideCharToMultiByte
GetLastError
GetModuleFileNameA
GetFileSize
GetStartupInfoA
DeleteCriticalSection
lstrlenA
GetStringTypeW
MoveFileExA
GlobalDeleteAtom
VirtualAllocEx
GetProcAddress
GetCPInfo
LocalReAlloc
LoadResource
GetVersion
HeapAlloc
GetProcessHeap
GetStdHandle
CloseHandle
FindResourceA
HeapFree
EnumCalendarInfoA
CreateThread
lstrcpynA
GetDiskFreeSpaceA
FreeLibrary
LoadLibraryExA
lstrcpyA
FormatMessageA
lstrcmpiA
EnterCriticalSection
SetThreadLocale
GlobalFindAtomA
GetCurrentThread
FindClose
WriteFile
FindFirstFileA
ReadFile
GetDateFormatA
SizeofResource
GetFileType
LockResource
VirtualFree
CompareStringA
GetTempPathA
GlobalAlloc
MulDiv
SetEvent
GetCurrentThreadId
GetOEMCP
GetEnvironmentStrings

advapi32

RegQueryValueA
RegEnumValueA

gdi32

GetObjectA
SetBkMode
GetBkMode
GetDCOrgEx

user32

LoadBitmapA
CharNextW
PostQuitMessage
GetCursor
CloseClipboard
SetTimer
IsZoomed
RemoveMenu
OemToCharA
UnhookWindowsHookEx
RemovePropA
DrawFrameControl
GetLastActivePopup
ShowScrollBar
RegisterWindowMessageA
GetWindowTextLengthA
GetCapture
GetClassLongA
ScreenToClient
SetScrollRange
CreatePopupMenu
PtInRect
EnumWindows
ReleaseCapture
EndDialog
LoadKeyboardLayoutA
FindWindowA
GetClassInfoA
GetPropA
GetDC
CallWindowProcA
MapVirtualKeyA
UpdateWindow
CreateWindowExA
BeginPaint
GetActiveWindow
SendMessageA
GetMenu
GetSysColorBrush
LoadStringA
GetWindowDC
DrawIconEx
GetKeyState
EqualRect
GetMenuItemID
GetFocus
WaitMessage
GetClassNameA
GetKeyboardType
ChildWindowFromPoint
IsDlgButtonChecked
IsWindowEnabled
CharLowerBuffA
GetSysColor
KillTimer
IsCharUpperA
GetDlgItem
SetWindowTextA
GetClipboardData
AdjustWindowRectEx
GetWindowRect
SetWindowLongA
PostMessageA
InsertMenuA
EnumThreadWindows

Exports

Exports

Q6aCi1R

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

43b888a51a825db244674676cf4c4e74

Headers

File Characteristics

Imports

kernel32

advapi32

gdi32

user32

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 96KB - Virtual size: 203KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 96KB - Virtual size: 203KB

.rsrc
Size: 2KB - Virtual size: 1KB