8228760be8b77a5223ff11d2abb9867f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8228760be8b77a5223ff11d2abb9867f_JaffaCakes118
Size

44KB
MD5

8228760be8b77a5223ff11d2abb9867f
SHA1

651a7650e34f9bfc04ccd30fa2c20b0eabd9ad93
SHA256

1bf6e89871963472ac2285c3c536a09b93672bc613d55abeed58407c2933fba7
SHA512

b371d8873a31655715c8534cbb1109a55cf873169da2065e077646e1e2dfa4f52a62bf64de65ee69cbf8278bc672c7f545ad92b7d79eb33ed7b4e4d6f3e3f3a8
SSDEEP

768:Q84Dt9PfW6BBk0QYNT2TsnesPtHKz3R62b:Q9ThBBk0QYNheKKXb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8228760be8b77a5223ff11d2abb9867f_JaffaCakes118

Files

8228760be8b77a5223ff11d2abb9867f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e72250ea56186d802eb3d9c07e245036

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
FreeLibrary
GetProcAddress
LoadLibraryA
GetVersionExA
SetThreadPriority
GetModuleFileNameA
WritePrivateProfileStringA
GetStartupInfoA
GetModuleHandleA
GetCommandLineA
GetFileSize
ReadFile
GlobalAlloc
GlobalLock
GlobalUnlock
MultiByteToWideChar
GlobalFree
GetTickCount
Sleep
CreateThread
SetEvent
WideCharToMultiByte
OutputDebugStringA
GetPrivateProfileIntA
GetPrivateProfileStringA
CreateFileA
WaitForSingleObject
CloseHandle
CreateEventA
GetSystemDirectoryA
ExpandEnvironmentStringsA

user32

wsprintfA
GetClientRect
FillRect
BeginPaint
GetWindowRect
ReleaseDC
GetDC
DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
ShowWindow
MessageBoxA
RegisterClassA
LoadIconA
LoadCursorA
SystemParametersInfoA
PostQuitMessage
PostMessageA
GetSystemMetrics
CreateWindowExA
AdjustWindowRect
SetTimer
KillTimer
SetCursor
DefWindowProcA
EndPaint

gdi32

GetDeviceCaps
CreateDCA
StretchBlt
SetStretchBltMode
GetStockObject
CreateCompatibleDC
CreateCompatibleBitmap
GetObjectA
SelectPalette
RealizePalette
GetDIBits
DeleteObject
SelectObject
DeleteDC
TextOutA

advapi32

RegQueryValueExA
RegOpenKeyA
RegQueryValueA
RegCloseKey
RegCreateKeyExA

ole32

StringFromGUID2
CoCreateInstance
CreateStreamOnHGlobal
CoUninitialize
CoInitialize

oleaut32

OleLoadPicture

msvcp60

?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Xran@std@@YAXXZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z

msvcrt

__getmainargs
_acmdln
exit
_XcptFilter
_exit
free
atoi
isdigit
atol
_initterm
_except_handler3
time
srand
rand
_mbscmp
??2@YAPAXI@Z
__CxxFrameHandler
strstr
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
memmove

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e72250ea56186d802eb3d9c07e245036

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

msvcp60

msvcrt

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 8KB - Virtual size: 4KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 8KB - Virtual size: 4KB