a4a272eb5e674584d3f1287fcf79fabd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a4a272eb5e674584d3f1287fcf79fabd_JaffaCakes118
Size

213KB
MD5

a4a272eb5e674584d3f1287fcf79fabd
SHA1

06acbfe3ee0e766ad4637d43f10d59b4894ec451
SHA256

454ebc3241ea44ed75156e8534591a288b8c5405cb680be4639cd95d75e87d92
SHA512

6332e3aefc10a94d840bde1823ae0db25a771e19558fd4660b8fffa601edb0f5cffa39aa5e336c47ab9d13b3f16304acb16e2b58075c9c06cd65395c5d88baf3
SSDEEP

6144:bnN0P7a+5M3me+53jSIGvmQCGZdUt5+Dmi:TKiC3j3GeQHUtMv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a4a272eb5e674584d3f1287fcf79fabd_JaffaCakes118

Files

a4a272eb5e674584d3f1287fcf79fabd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

71e135928c3856ce0fadb55d9287a7dc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetObjectA
DeleteDC
GetTextMetricsA
CreateCompatibleBitmap
BitBlt
SetTextColor
CreateCompatibleDC
SelectObject
DeleteObject
CreateSolidBrush
SetBkMode
CreateFontA

user32

TrackPopupMenu
SendDlgItemMessageA
SetCursor
SetWindowLongA
MessageBoxA
GetWindowLongA
GetDlgItem
ShowWindow
CreatePopupMenu
AppendMenuA
MessageBeep
LoadImageA
UpdateWindow
EnableWindow
CallWindowProcA
DialogBoxIndirectParamA
GetSystemMetrics
ShowScrollBar
GetCursorPos
SetWindowPos
LoadCursorA
EndPaint
FillRect
DrawTextA
GetClientRect
GetSysColor
SendMessageA
BeginPaint
LoadIconA
SetScrollRange
EndDialog
ReleaseDC
SetScrollPos
SetRect
GetDC
GetScrollRange

kernel32

DeleteFileA
SetFileAttributesA
CreateFileMappingA
MapViewOfFile
GetFileAttributesA
WriteFile
UnmapViewOfFile
GetStartupInfoA
GetTempPathA
GetVersionExA
GetCurrentDirectoryA
LoadLibraryA
GetTempFileNameA
CopyFileA
GetProcAddress
SetLastError
GetLastError
Sleep
FormatMessageA
ExpandEnvironmentStringsA
LoadResource
FindResourceA
GetFileSize
CloseHandle
ReadFile
SetFilePointer
SizeofResource
HeapAlloc
WaitForSingleObject
CreateThread
HeapCreate
CreateFileA
HeapDestroy
SetThreadPriority

winmm

mciSendCommandA
waveOutWrite
waveOutUnprepareHeader
waveOutReset
waveOutPrepareHeader
waveOutOpen
waveOutGetPosition
waveOutClose

msvcrt

_cexit
exit
_acmdln
__getmainargs
_initterm
_XcptFilter
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_exit
_c_exit
memset
strcpy
?terminate@@YAXXZ
??1type_info@@UAE@XZ
malloc
_controlfp
??3@YAXPAX@Z
free
strcat
memcpy
strlen
_CxxThrowException
__setusermatherr
__CxxFrameHandler

shell32

ShellExecuteA

advapi32

RegSetValueExA
RegQueryValueExA
RegCloseKey
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExA
RegDeleteValueA

comdlg32

GetOpenFileNameA

msimg32

TransparentBlt

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4.4MB - Virtual size: 4.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

71e135928c3856ce0fadb55d9287a7dc

Headers

File Characteristics

Imports

gdi32

user32

kernel32

winmm

msvcrt

shell32

advapi32

comdlg32

msimg32

Sections

.text Size: 20KB - Virtual size: 19KB

.data Size: 4KB - Virtual size: 265KB

.rsrc Size: 4.4MB - Virtual size: 4.4MB

.text
Size: 20KB - Virtual size: 19KB

.data
Size: 4KB - Virtual size: 265KB

.rsrc
Size: 4.4MB - Virtual size: 4.4MB