785bcf06c5ae2d63dd2b44978f6822ec_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

785bcf06c5ae2d63dd2b44978f6822ec_JaffaCakes118
Size

427KB
MD5

785bcf06c5ae2d63dd2b44978f6822ec
SHA1

53916a7c189f757b24c3d9e8b7b7be8102859e61
SHA256

b3cb418634b44ee533712f2dbef8f0e29acab0821315eb8815ac272e26dde530
SHA512

364b9a11cf7ea25cdc546a03c4bc3adc6846456e7ce9aacbc2dbedb27c4f1f803348b4e8e7a7c4a9a0cdc6e99b30281e183146a71c683871288bea2ac22ac4ae
SSDEEP

12288:6tEl7ysklsc/Ejb1Pdhq6WIhCgdQ5Is5L:6C9YBEjb1l9PdI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
785bcf06c5ae2d63dd2b44978f6822ec_JaffaCakes118

Files

785bcf06c5ae2d63dd2b44978f6822ec_JaffaCakes118
.exe windows:5 windows x86 arch:x86

cd6ad0e236e5d05f79628ee1a6c07d56

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteObject
GetDeviceCaps
DeleteDC
BitBlt
CreateSolidBrush

advapi32

RegDeleteValueW
RegSetValueExW
RegCloseKey
RegQueryValueExW

kernel32

VirtualAlloc
Sleep
VirtualFree
HeapCreate
GetEnvironmentStrings
GetVersion
GetModuleHandleW
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCPInfo
GetCommandLineW
LockResource
GetCurrentProcessId
SizeofResource
lstrlenW
GlobalUnlock
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
LCMapStringW
GetLastError
InterlockedIncrement
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
CreateEventW
RemoveDirectoryA
DuplicateHandle
FindFirstFileW
CompareStringA
FindFirstFileA
UnmapViewOfFile
CompareStringW
GetProcessHeap
GetProcAddress
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
FreeLibrary
LoadLibraryA
FlushFileBuffers
TlsAlloc
GetTickCount
QueryPerformanceCounter
GetOEMCP
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
LeaveCriticalSection
GetCurrentThreadId
SetEndOfFile
GlobalAlloc
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
GetLocalTime
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
ExitProcess
IsDebuggerPresent
GetModuleFileNameW
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
LocalFree
SetEvent
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
WideCharToMultiByte
SetStdHandle
FreeEnvironmentStringsW
LoadLibraryExW
LocalAlloc
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
FindNextFileA
WaitForSingleObject
GetFileAttributesA
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetEnvironmentStringsW
GetEnvironmentVariableA
HeapDestroy
RtlUnwind
InterlockedDecrement

user32

SetCursor
CallWindowProcA
SendMessageA
InvalidateRect
GetSubMenu
IsWindowVisible
GetSysColor
MessageBoxA
MessageBeep
GetFocus
GetDesktopWindow
LoadCursorA
ScreenToClient
wsprintfA
EndDialog
SetWindowLongA
PostMessageA
GetWindowRect
GetSystemMetrics
SetFocus
DispatchMessageA
CreateWindowExA
GetWindowLongA
GetWindow
IsWindowEnabled
TranslateMessage
PeekMessageA
EnableWindow
ShowWindow
UpdateWindow
GetParent
GetMessageA
GetCursorPos
GetDC
EndPaint
IsWindow
SetWindowPos
ReleaseDC
PostQuitMessage
SetForegroundWindow

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 400KB - Virtual size: 399KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd6ad0e236e5d05f79628ee1a6c07d56

Headers

File Characteristics

Imports

gdi32

advapi32

kernel32

user32

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 400KB - Virtual size: 399KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 400KB - Virtual size: 399KB

.rsrc
Size: 5KB - Virtual size: 5KB