8d733a87cae586708208b28fe65415c9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8d733a87cae586708208b28fe65415c9_JaffaCakes118
Size

216KB
MD5

8d733a87cae586708208b28fe65415c9
SHA1

089efebc77ae2dacb0b2e4dd25aae97e52e06783
SHA256

641514e843fc4fcb4295dce33b04da1aa378116812f3350c8f4f6b23ad51197f
SHA512

19eae57a0577286cdc4f6f4fa3d76f87893f59e99facf5b1890e1a925e78c52261ad842caba572f146087af17b84cf925310b2d5748a9385c78bc4e375358bfa
SSDEEP

3072:ro6MIRuCkxaJikTYaD6t8WP5cXNWkCRdZy/79MG056igkMbJMbStFsZlgg8rRw:rfMuDL4awDd9byh8M2bStp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8d733a87cae586708208b28fe65415c9_JaffaCakes118

Files

8d733a87cae586708208b28fe65415c9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2bb63d9dc3c954d810f7e4eb48e21021

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VariantClear
VariantInit
SysFreeString
SysStringLen
SysAllocString

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExW
RegDeleteValueA

ole32

OleUninitialize
OleInitialize

kernel32

VirtualAlloc
lstrlenA
GetCommandLineA
FindResourceA
Sleep
WriteConsoleA
VirtualFree
HeapCreate
IsValidCodePage
CreateProcessA
SizeofResource
SetStdHandle
GetCurrentThreadId
GetModuleHandleW
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
InterlockedCompareExchange
HeapSize
WideCharToMultiByte
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
FileTimeToLocalFileTime
lstrlenW
VirtualQuery
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
FindResourceW
GetConsoleCP
GlobalFree
UnmapViewOfFile
LCMapStringW
GetLastError
LeaveCriticalSection
ExitProcess
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GlobalLock
WaitForMultipleObjects
FindFirstFileW
CreateFileMappingA
ResetEvent
CompareStringA
lstrcpyA
FindFirstFileA
CompareStringW
GetProcessHeap
GetSystemInfo
GetProcAddress
DeleteFileW
SetEvent
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
VirtualProtect
TlsAlloc
IsBadWritePtr
GetTickCount
QueryPerformanceCounter
FreeLibrary
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
GetVersion
GetLocaleInfoA
GetConsoleMode
GlobalAlloc
InterlockedDecrement
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
MultiByteToWideChar
UnhandledExceptionFilter
LoadLibraryExA
RaiseException
GetModuleFileNameA
InterlockedExchange
GetVersionExA
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
GetEnvironmentVariableA
SetLastError
OutputDebugStringA
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
GetOEMCP
SetFileAttributesA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
GetStringTypeA
GetCPInfo
GetTempPathA
FreeEnvironmentStringsW
CreateFileA
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
HeapDestroy
SetEndOfFile
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle

user32

GetKeyState
GetSysColor
MessageBoxA
SetDlgItemTextA
EndDialog
SetForegroundWindow
GetDesktopWindow
LoadIconA
LoadCursorA
ClientToScreen
GetDlgItem
GetSubMenu
SetWindowLongA
PostMessageA
GetWindowRect
GetSystemMetrics
KillTimer
BeginPaint
SetFocus
ReleaseDC
SetTimer
GetWindowLongA
EnableMenuItem
SystemParametersInfoA
IsWindowEnabled
TranslateMessage
PeekMessageA
CallWindowProcA
EnableWindow
ShowWindow
DefWindowProcA
UpdateWindow
GetParent
DestroyWindow
ScreenToClient
MoveWindow
SendMessageA
DrawTextA
GetCursorPos
GetDC
EndPaint
DispatchMessageA
IsWindow
SetWindowPos
LoadBitmapA
PostQuitMessage
IsWindowVisible
InvalidateRect
wsprintfA
GetClientRect
LoadStringA
SetCursor

gdi32

DeleteObject
SetBkColor
BitBlt
GetStockObject
GetDeviceCaps
SetTextColor
SelectObject
SetBkMode

Sections

amowuo
Size: 200KB - Virtual size: 198KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2bb63d9dc3c954d810f7e4eb48e21021

Headers

File Characteristics

Imports

oleaut32

advapi32

ole32

kernel32

user32

gdi32

Sections

amowuo Size: 200KB - Virtual size: 198KB

.rdata Size: 8KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 744B

amowuo
Size: 200KB - Virtual size: 198KB

.rdata
Size: 8KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 744B