89ba7ce09593b69bfce20ce12a41ec3b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

89ba7ce09593b69bfce20ce12a41ec3b_JaffaCakes118
Size

284KB
MD5

89ba7ce09593b69bfce20ce12a41ec3b
SHA1

a947974f34d05a06e00ddec0561a7b4899b61d6e
SHA256

6fe74f2c81cf6dab9fb48aaa62e162b9756639f370d1878976c2beb89a388a2c
SHA512

b0ff74376ae291c9f77aa92f55ad66e980427b2f3536fa8ab5fb5cd42c8c52ea5c8d4023abe98c4072176c70bde4eb54f03040fca04e03332df379a56c5897ec
SSDEEP

6144:jRlzeldZfd/l7K15CUNoNZZlzXYy1PJ9a6DviXW6cJ7IfQKx+jJABdsg:9mX7K1RNYTx3tXvkcIZoF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89ba7ce09593b69bfce20ce12a41ec3b_JaffaCakes118

Files

89ba7ce09593b69bfce20ce12a41ec3b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e81a27a3a1feea783ecf9efca4fece6c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLangID
GetLastError
Sleep
GetFileAttributesW
InterlockedIncrement
GetCurrentThread
FreeLibrary
SetCurrentDirectoryW
CloseHandle
WaitForMultipleObjects
GetModuleFileNameW
GlobalFree
ReadFile
SetLastError
WideCharToMultiByte
GetLocalTime
CancelWaitableTimer
LoadLibraryW
GetModuleHandleW
ExitProcess
GetProcessHeap
HeapAlloc
HeapFree
HeapSize
IsBadReadPtr
LoadLibraryA
VirtualAlloc
VirtualFree
VirtualProtect
FindFirstChangeNotificationW
InterlockedDecrement
GetDriveTypeW
GetCurrentProcessId
FreeResource
lstrlenW
MulDiv
LoadResource
FindResourceW
CreateEventW
LockResource
SetEvent
GetProcAddress
GetFileAttributesExW
SetFilePointer
GetVersion
SizeofResource
QueryDosDeviceW
lstrcpyW
ResumeThread
GetCurrentProcess

user32

GetWindowThreadProcessId
TrackPopupMenu
LoadStringW
SystemParametersInfoW
LoadCursorW
LoadIconW
IsDlgButtonChecked
GetMessageW
DispatchMessageW
SendMessageW
PostThreadMessageW
RegisterWindowMessageW
CreateWindowExW
GetClassNameW
PostMessageW
AppendMenuW
RegisterHotKey
EnableWindow
SetForegroundWindow
LoadBitmapW
DefWindowProcW
UpdateWindow
FillRect
RedrawWindow
RegisterClassExW
InvalidateRect
MessageBoxW
WindowFromPoint
SendDlgItemMessageW
CreatePopupMenu
OffsetRect
SetCursor
DestroyMenu
GetParent
SetCursorPos

gdi32

CreateFontIndirectW
GetMapMode
LineTo
GetDeviceCaps
Rectangle
CreateCompatibleDC
DeleteDC
GetObjectW
SelectObject
DPtoLP
DeleteObject
BitBlt
CreateCompatibleBitmap
SetBkColor

advapi32

RegSetValueExW
RegNotifyChangeKeyValue
LookupPrivilegeValueW
RegCreateKeyExW
StartServiceW

shell32

SHChangeNotify

ole32

CoInitializeEx

oleaut32

OleLoadPicture

Sections

.text
Size: 256KB - Virtual size: 252KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e81a27a3a1feea783ecf9efca4fece6c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 256KB - Virtual size: 252KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 20KB - Virtual size: 18KB

.text
Size: 256KB - Virtual size: 252KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 20KB - Virtual size: 18KB