9581e05163606638f68c67d63419f5ce_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

9581e05163606638f68c67d63419f5ce_JaffaCakes118
Size

603KB
MD5

9581e05163606638f68c67d63419f5ce
SHA1

eb95faad04fb0ab37e46416259abbed85ca8b1a7
SHA256

fc578091b9b98d161a6aa5562121d474a0cd355816c857e9e13ef99428040103
SHA512

f9680e0c192e52073555e211c5187b094f8c71e5117c2726888444c70e1ed51a32abaa5911fc3e34c8ae3b70e47be66efcb42dddc9f9c6fd7be10148e7b864bd
SSDEEP

12288:1tT/8xIWFKy49hAICylIB8Ac3C5SulNAUAgq8dEZ7On5TGwxPQY:/Tkxf4hFTvAcESulyr8iZgV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9581e05163606638f68c67d63419f5ce_JaffaCakes118

Files

9581e05163606638f68c67d63419f5ce_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f3c94e186404fc360e5b5d64efffcc77

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VariantClear
VariantInit
SysFreeString

advapi32

RegCloseKey
RegQueryValueExA
RegDeleteValueA

user32

PtInRect
GetParent
ShowWindow
EnableWindow
TranslateMessage
IsWindowEnabled
GetWindow
LoadStringA
RegisterClassA
GetWindowLongA
DispatchMessageA
EndPaint
DestroyWindow
SetFocus
BeginPaint
GetDC
DefWindowProcA
GetWindowRect
SetWindowLongA
EndDialog
CheckMenuItem
GetDlgItem
ScreenToClient
LoadCursorA
SetForegroundWindow
GetFocus
GetSysColor
SystemParametersInfoA
InvalidateRect
GetClientRect
SetCursor
SetWindowPos
PostQuitMessage
KillTimer

kernel32

FindFirstFileW
GetStringTypeW
GetCPInfo
LeaveCriticalSection
InitializeCriticalSection
RtlUnwind
GetEnvironmentVariableA
SetLastError
GetStdHandle
GetConsoleOutputCP
ReleaseMutex
GetFileAttributesA
WaitForSingleObject
HeapDestroy
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
GetLocaleInfoA
LocalAlloc
SetErrorMode
FreeEnvironmentStringsW
SetStdHandle
WideCharToMultiByte
GetStringTypeA
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
SetFileAttributesA
GetOEMCP
VirtualAlloc
FindResourceA
Sleep
CreateProcessW
HeapCreate
IsValidCodePage
CreateProcessA
SizeofResource
GetModuleHandleW
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
GetCommandLineA
GetCurrentDirectoryA
GetCommandLineW
GetCurrentProcessId
WritePrivateProfileStringA
GetEnvironmentStrings
FileTimeToLocalFileTime
VirtualFree
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
lstrlenA
GetSystemInfo
UnmapViewOfFile
LCMapStringW
GetLastError
InterlockedIncrement
ExitProcess
TlsSetValue
GetFileType
CreateEventA
CreateFileW
RemoveDirectoryA
GlobalLock
CompareStringA
lstrcpyA
GetCurrentThreadId
FindFirstFileA
CompareStringW
GetProcessHeap
GetProcAddress
DeleteFileA
GetFileSize
GetStartupInfoA
FreeLibrary
LoadLibraryA
GetVersionExA
TlsAlloc
GetTickCount
QueryPerformanceCounter
SetEvent
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
GetVersion
SetEndOfFile
VirtualQuery
WriteConsoleA
SetUnhandledExceptionFilter
TerminateProcess
GetSystemDirectoryA
MulDiv
CreateFileA
CreateThread
GetModuleHandleA
CreateMutexA
MultiByteToWideChar
LoadLibraryExW
UnhandledExceptionFilter
lstrcmpiW
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
TlsGetValue
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
LocalFree

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 547KB - Virtual size: 546KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f3c94e186404fc360e5b5d64efffcc77

Headers

File Characteristics

Imports

oleaut32

advapi32

user32

kernel32

Sections

.text Size: 22KB - Virtual size: 21KB

.rdata Size: 547KB - Virtual size: 546KB

.data Size: 28KB - Virtual size: 31KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 22KB - Virtual size: 21KB

.rdata
Size: 547KB - Virtual size: 546KB

.data
Size: 28KB - Virtual size: 31KB

.rsrc
Size: 5KB - Virtual size: 4KB