a030ba3a0540690cf509266e9b8e6cbc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a030ba3a0540690cf509266e9b8e6cbc_JaffaCakes118
Size

304KB
MD5

a030ba3a0540690cf509266e9b8e6cbc
SHA1

47f39fb17a3e68f03627e4afd0c276eb8e1925be
SHA256

c0e22610e9ea94b9d957dd00456bacfba3580285cd369512267a14cb18e4f4ed
SHA512

462fcced8fc7f360e8fe17f60c2bb8a045aaa5d585685336fce0d4b672394b8ebb52c06995c623be4be70b198fd0c836f829bda54871dd33676f544b69833dfe
SSDEEP

6144:chERcRplLOHtrJXh2QHABM1rN/bd+Ln+QnqH3zEHrIuy6YnlygzGK:chWcRD0bEfBgN/bd+hnqHDEHbslw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a030ba3a0540690cf509266e9b8e6cbc_JaffaCakes118

Files

a030ba3a0540690cf509266e9b8e6cbc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e76d8e03896a0daeeb696764d2cddef2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCPInfo
GetCommandLineW
GetCurrentProcessId
SizeofResource
FileTimeToLocalFileTime
lstrlenW
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
LCMapStringW
GetLastError
InterlockedIncrement
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
WaitForMultipleObjects
FindFirstFileW
CreateFileMappingA
CompareStringA
FindFirstFileA
CompareStringW
GetProcessHeap
GetSystemInfo
GetProcAddress
GetFullPathNameA
SetErrorMode
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
VirtualProtect
TlsAlloc
GetTickCount
QueryPerformanceCounter
GetOEMCP
GetVersionExW
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
LeaveCriticalSection
GetCurrentThreadId
SetEndOfFile
CreateEventW
ReadFile
VirtualQuery
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
MulDiv
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
CreateMutexA
GetLocalTime
MultiByteToWideChar
TlsGetValue
UnhandledExceptionFilter
LoadLibraryExA
lstrcmpiW
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
GetEnvironmentVariableA
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
FreeLibrary
SetFileAttributesA
GetStringTypeW
HeapReAlloc
SetStdHandle
WaitForSingleObject
WriteFile
InterlockedExchange
GetSystemTimeAsFileTime
GetStringTypeA
lstrcmpiA
WideCharToMultiByte
GetTempPathA
FreeEnvironmentStringsW
LoadLibraryExW
LocalAlloc
GetLocaleInfoA
GetCurrentDirectoryA
GetStartupInfoW
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
FindNextFileA
LockResource
SetEvent
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetUserDefaultLangID
GetUserDefaultLCID
GetSystemDefaultLangID
GetSystemDefaultLCID
CloseHandle
lstrcpynA
GetACP
GlobalLock
GetModuleHandleW
GetVersion
FindResourceA
GetEnvironmentStrings
IsValidCodePage
CreateProcessA
HeapCreate
FindResourceW
VirtualFree
Sleep
VirtualAlloc
DeleteFileW
GetConsoleMode
ResetEvent

gdi32

SetBkColor
GetDeviceCaps
DeleteDC
GetStockObject
CreateCompatibleDC
SetTextColor
SelectObject
CreateSolidBrush
BitBlt

user32

PostMessageA
GetWindowRect
GetSystemMetrics
BeginPaint
PeekMessageA
MapWindowPoints
EndPaint
FillRect
SetTimer
GetWindowLongA
RegisterClassA
EnableMenuItem
LoadStringA
IsWindowEnabled
TranslateMessage
EnableWindow
SetCapture
ShowWindow
UpdateWindow
GetParent
ReleaseCapture
GetKeyState
GetActiveWindow
ClientToScreen
ReleaseDC
GetCursorPos
GetDC
SetForegroundWindow
DispatchMessageA
IsWindow
SetWindowPos
PostQuitMessage
SetFocus
SystemParametersInfoA
IsWindowVisible
wsprintfA
DrawTextA
InvalidateRect
SendMessageA
CallWindowProcA
SetCursor
SetWindowLongA
SetWindowTextA
CheckMenuItem
GetSubMenu
CreateWindowExA
GetDlgItem
ScreenToClient
LoadCursorA
LoadIconA
GetDesktopWindow
GetFocus
EndDialog
MoveWindow
MessageBoxA
DialogBoxParamA
DestroyWindow
GetSysColor

advapi32

RegSetValueExA
RegDeleteValueA
RegCreateKeyExW
RegOpenKeyExA
RegOpenKeyExW
RegCloseKey
RegDeleteKeyA

msvcrt

_strcmpi
_onexit
__dllonexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

Sections

.text
Size: 288KB - Virtual size: 285KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e76d8e03896a0daeeb696764d2cddef2

Headers

File Characteristics

Imports

kernel32

gdi32

user32

advapi32

msvcrt

Sections

.text Size: 288KB - Virtual size: 285KB

.data Size: 8KB - Virtual size: 6KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 288KB - Virtual size: 285KB

.data
Size: 8KB - Virtual size: 6KB

.rsrc
Size: 4KB - Virtual size: 3KB