8a7f55f3a3a009bcc77cc0a492b72819_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8a7f55f3a3a009bcc77cc0a492b72819_JaffaCakes118
Size

119KB
MD5

8a7f55f3a3a009bcc77cc0a492b72819
SHA1

a5ed1b4cdf55c07f62dede670895f14be2c5113a
SHA256

59a7a109f003a023b9a0fddac7f20c5f601433e8b55067c22ae761ef96e0b8af
SHA512

6be732f762cc05f0bf9603e811032b8ec3100e830badff2d7536394fc0d119187c0bd9f922ab5c437c190cd2257a8e25e371ea49e1d2efd3baab27398958de63
SSDEEP

3072:RSYab5MnU+z/aUJy3NgsKIasf+5stlCVis0xmLdCmU:RlFJJy9QBF5sDs53

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a7f55f3a3a009bcc77cc0a492b72819_JaffaCakes118

Files

8a7f55f3a3a009bcc77cc0a492b72819_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6707495ffe5bd3184cd9a997f6d76151

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcschr
swprintf
time
srand
_acmdln
wcsncmp
wcscspn
memmove
exit
calloc
sqrt
wcstol

shell32

SHGetDiskFreeSpaceA
Shell_NotifyIconA
Shell_NotifyIconW
DragQueryFileA
SHGetFileInfoA

shlwapi

SHQueryValueExA
SHQueryInfoKeyA
PathFileExistsA
SHGetValueA
PathIsDirectoryA

user32

GetKeyboardLayoutList
GetClassNameA
GetWindowDC
IsChild
SetScrollInfo
MapVirtualKeyA
RedrawWindow
IntersectRect
DrawIcon
GetPropA
GetKeyState
SetWindowLongW
LoadCursorA
GetCursor
LoadKeyboardLayoutA
IsWindowEnabled
EnumThreadWindows
GetMenu
BeginPaint
EnableWindow
GetSysColor
GetDC
SetRect
EndPaint
SetScrollRange
CloseClipboard
DestroyIcon
ShowScrollBar
UnhookWindowsHookEx
IsCharLowerA
RemovePropA
FillRect
DrawMenuBar
CreateWindowExA
TranslateMessage
GetScrollRange
SetPropA
IsCharUpperA
TrackPopupMenu
InsertMenuA
IsMenu
DeleteMenu
GetParent
GetDlgItem
GetClientRect
EnumChildWindows
GetLastActivePopup
GetTopWindow
GetWindowPlacement
GetMenuState
GetSystemMetrics
SetForegroundWindow
CharNextA
GetWindowRect
IsWindowVisible
IsWindowUnicode
WindowFromPoint
DrawEdge
SetTimer
CharLowerA
SetClassLongA
UpdateWindow
IsZoomed
WaitMessage
GetWindowLongA
GetWindowTextLengthA
CheckMenuItem
SetFocus
GetWindowLongW
GetKeyNameTextA
ReleaseDC

gdi32

GetPixel
GetClipBox

version

VerQueryValueA
GetFileVersionInfoA

kernel32

VirtualAllocEx
GetThreadLocale
ExitProcess
GetDiskFreeSpaceA

Exports

Exports

ng374LnEp@8
_2GcTPL@8
EDt0L
_L_gAlFFF
_f9hq6snguHlG@8
_HM8A59RF1BX
tPZKJc@24
c3wrPCN9
_sl1IZpWvU@20
9fmWELiHBc0@8
6A3IkbEQsDpBdw@4
dzzDbA
_thXyKN@4
_JGUWEAuh2F@8
_9oJDY@12
jlqsMU
_HlCuJVN9x8y@12
_5RjpPr_e47@24

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 219KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6707495ffe5bd3184cd9a997f6d76151

Headers

File Characteristics

Imports

msvcrt

shell32

shlwapi

user32

gdi32

version

kernel32

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 100KB - Virtual size: 219KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 100KB - Virtual size: 219KB

.rsrc
Size: 1KB - Virtual size: 1KB