778c651c4d68f92e4f8a97bd762d0142_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

778c651c4d68f92e4f8a97bd762d0142_JaffaCakes118
Size

458KB
MD5

778c651c4d68f92e4f8a97bd762d0142
SHA1

582efde1d1aef59809b3f15f0efdc95368428c93
SHA256

caea5343d0bf79c698938d4f9ad30068e4b0f2541ebaa468b8f8336c84a7869c
SHA512

8e31c73260b99cb407fdf3ce588f6fa9c87b0b9a93c87e5ca2541cadc0ff1058a97de8d5a52ff42b1a4902493d1a8944ca2442727bafce6f30b4fb17266baf01
SSDEEP

12288:qmuH1B7lSJhEypUOGtPM7sYGLL7LXBjNqV2oxF:qLIz2FV6AL79jC2A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
778c651c4d68f92e4f8a97bd762d0142_JaffaCakes118

Files

778c651c4d68f92e4f8a97bd762d0142_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d4e26ed9754c9accda153417f01bdec6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpW
LocalFree
LocalAlloc
lstrlenA
GetModuleHandleW
lstrcpynW
GlobalLock
WideCharToMultiByte
FreeLibrary
GlobalUnlock
GlobalSize
GetUserDefaultLCID
QueueUserWorkItem
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapSize
HeapReAlloc
lstrcmpA
HeapAlloc
GetCPInfo
GetOEMCP
GetACP
LoadLibraryA
HeapFree
VirtualFree
HeapCreate
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetLastError
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
WriteFile
ExitProcess
VirtualQuery
InterlockedExchange
GetVersionExA
GetStartupInfoA
GetModuleHandleA
RtlUnwind
GetProcAddress
LoadLibraryW
GetModuleFileNameW
MultiByteToWideChar
FreeResource
GetSystemInfo
CloseHandle
TlsGetValue
TlsSetValue
TlsFree
TlsAlloc
GetCurrentThreadId
WaitForSingleObject
ReleaseMutex
lstrlenW
lstrcpyW
Sleep
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
DisableThreadLibraryCalls
lstrcatW
HeapDestroy
VirtualProtect
VirtualAlloc
GetCommandLineA

user32

FindWindowW
CallNextHookEx
CreateWindowExW
CheckRadioButton
BeginDeferWindowPos
DestroyWindow
WinHelpW
SetWindowContextHelpId
GetWindowLongW
LoadStringW
DestroyIcon
SetWindowLongW
GetDlgItem
EnumChildWindows
CharNextW
EndDeferWindowPos
GetUpdateRect
GetSysColorBrush
GetCursorPos
SetParent
GetDC
MapWindowPoints
GetWindowRect
GetDlgCtrlID
SetFocus
GetPropW
CallWindowProcW
RemovePropW
GetParent
PostMessageW
SendMessageW
SetPropW
GetSystemMetrics
SetWindowPos
GetWindowTextLengthW
MessageBeep
GetWindowTextW
SetWindowTextW
ShowWindow
EnableWindow
CheckDlgButton
DeferWindowPos
GetClientRect
InvalidateRect
ReleaseDC
GetWindowDC
SetCursor
LoadCursorW
GetFocus
DrawFocusRect
GetSysColor
LoadImageW
ScreenToClient

advapi32

RegCloseKey
RegQueryValueExA
RegCreateKeyA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA

gdi32

DeleteObject
DeleteDC
SetTextColor
CreateCompatibleDC
SelectObject
GetTextMetricsW
StretchDIBits
CreateCompatibleBitmap
BitBlt
SetStretchBltMode
GetObjectW
GetBitmapBits
SetDIBitsToDevice
SetTextAlign
SetBkColor
IntersectClipRect
GetTextExtentPointW
SetBkMode

ole32

CreateStreamOnHGlobal
StringFromIID
GetHGlobalFromStream
CLSIDFromProgID
CoCreateInstance
CoTaskMemFree

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 344KB - Virtual size: 688KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d4e26ed9754c9accda153417f01bdec6

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

Sections

.text Size: 62KB - Virtual size: 61KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 344KB - Virtual size: 688KB

.rsrc Size: 43KB - Virtual size: 43KB

.text
Size: 62KB - Virtual size: 61KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 344KB - Virtual size: 688KB

.rsrc
Size: 43KB - Virtual size: 43KB