8483c6fd4b29808400bcd2cfb6e06ee4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8483c6fd4b29808400bcd2cfb6e06ee4_JaffaCakes118
Size

281KB
MD5

8483c6fd4b29808400bcd2cfb6e06ee4
SHA1

4e35daa63f345c49218656edd91f490c9e28ad4e
SHA256

65bfb01850231616f23bd29b01495394eaf3022fe1220b2aa293788bada02df1
SHA512

ea7a312aab35d78fc4410188a0e4c15aea33bcb760e8bef04bbed99ea2db66a9ac92d56397bedc245d3132b81f2705542f2ebada80f2df55093378b1591908a6
SSDEEP

6144:dyQPjWAOE2tPBG0RVq0KdlCFhxMm+ET7MGfk39kj8:sWjWAj2tY0W00C7H+ET7Bfo68

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8483c6fd4b29808400bcd2cfb6e06ee4_JaffaCakes118

Files

8483c6fd4b29808400bcd2cfb6e06ee4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

79dc7547cc95536ae37134476e9d6167

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SuspendThread
GetUserDefaultLangID
TerminateThread
DeleteFileW
SizeofResource
InterlockedDecrement
VirtualFree
WritePrivateProfileStringW
GetCurrentThread
GetPrivateProfileStringW
FindFirstChangeNotificationW
lstrcpyW
ReadFile
GlobalDeleteAtom
ReadProcessMemory
ExitProcess
GetProcessHeap
HeapAlloc
HeapFree
HeapSize
IsBadReadPtr
LoadLibraryA
VirtualAlloc
VirtualProtect
WaitForSingleObject
SetCurrentDirectoryW
GetFileAttributesW
GetProcAddress
FindResourceExW
GlobalAddAtomW
CreateWaitableTimerW
DuplicateHandle
FindFirstFileW
LockResource
GetLocalTime
GlobalLock
SetLastError
CreateEventW
WriteFile
MoveFileW
GetFileAttributesExW
GetModuleFileNameW
GetVersion
SetThreadPriority
GetCurrentProcess
SetEvent
WaitForMultipleObjects
FreeLibrary
CreateProcessW

user32

PostMessageW
CreatePopupMenu
wsprintfW
LoadIconW
SetWindowTextW
SetForegroundWindow
UpdateWindow
GetParent
IsDlgButtonChecked
GetDlgItem
EndDialog
DialogBoxParamW
DefWindowProcW
GetSysColor
DrawTextW
SetLayeredWindowAttributes
AppendMenuW
SendDlgItemMessageW
VkKeyScanW
GetWindowTextW
GetCursorPos
PostThreadMessageW
DestroyMenu
ReleaseCapture
WindowFromPoint
OffsetRect
GetKeyState
RedrawWindow
TrackPopupMenu
LoadImageW
InvalidateRect

gdi32

CreateCompatibleBitmap
GetObjectW
CreateSolidBrush
CreateCompatibleDC
GetClipBox
LineTo
CreateICW
CreateBitmap
CreateRoundRectRgn
SetMapMode
DPtoLP
SetBkColor
GetDeviceCaps
Rectangle
BitBlt
CreatePen
SelectObject

advapi32

GetUserNameW
RegDeleteValueW
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW

shell32

SHChangeNotify

ole32

CoUninitialize

oleaut32

OleLoadPicture

Sections

.text
Size: 252KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

79dc7547cc95536ae37134476e9d6167

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 252KB - Virtual size: 248KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 20KB - Virtual size: 18KB

.text
Size: 252KB - Virtual size: 248KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 20KB - Virtual size: 18KB