a54cb3b9cd9527ec6e3b12f4add44fcd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a54cb3b9cd9527ec6e3b12f4add44fcd_JaffaCakes118
Size

193KB
MD5

a54cb3b9cd9527ec6e3b12f4add44fcd
SHA1

c2183d2b23642c0619ddface777d24b76097ba31
SHA256

a5191b49839e8389e69f57497f7c0ca2d452f492cd908ca5d5fcb94e9c7bdd5d
SHA512

034ff6a70306548e084ab78d3195810162652cbf7a76b8fbf3e1a7cac052238359edb5627a15dc5797cb65cfd4e7a44d3baf36c17e8d2f383b781fa0ba952e4e
SSDEEP

3072:pmp+al7K1aj0Fgsxf+jhDcRFD/sltMujwu/en92JnbpXSUgExD9:sp7l7Sajbsxm1iw2ucuHrXe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a54cb3b9cd9527ec6e3b12f4add44fcd_JaffaCakes118

Files

a54cb3b9cd9527ec6e3b12f4add44fcd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1a54b37948cee69bc3e94799fa37318b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowRect
GetMonitorInfoA
CharNextW
RegisterClassA
MonitorFromWindow
ReleaseDC
EnumDisplayMonitors
GetDC
LoadCursorA
GetActiveWindow
WindowFromDC
SetActiveWindow
CreateWindowExA
MonitorFromPoint
ScrollWindowEx
GetClientRect
DefWindowProcA
LoadIconA
GetSystemMetrics
DestroyWindow
OffsetRect
SetWindowPos
GetDesktopWindow
UnregisterClassA

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA

shlwapi

PathRemoveFileSpecA
PathAppendA

kernel32

GetModuleFileNameA
GetSystemDefaultLCID
IsProcessorFeaturePresent
CreateMutexA
TlsSetValue
GetCalendarInfoW
GetTimeFormatW
GetFileTime
GetDateFormatW
TlsGetValue
GetSystemTimeAsFileTime
GetFileSize
GetLastError
LocalAlloc
GetProcAddress
InterlockedExchange
GetSystemDirectoryA
GetDateFormatA
GetSystemInfo
GetCurrentProcess
GlobalUnlock
lstrlenW
LoadLibraryA
ExitProcess
GetCurrentThread
GetTimeFormatA
SetUnhandledExceptionFilter
GlobalAlloc
InterlockedCompareExchange
Sleep
SetCurrentDirectoryA
EnterCriticalSection
CreateSemaphoreA
GetACP
GetModuleHandleA
FindClose
GetCurrentDirectoryA
FreeLibrary
GetTickCount
GlobalLock
WideCharToMultiByte
GlobalFree
EnumResourceNamesA
GetCurrentThreadId
UnhandledExceptionFilter
TerminateProcess
MultiByteToWideChar
GetCurrentProcessId
GetThreadLocale
TlsFree
DeleteCriticalSection
QueryPerformanceCounter
ReleaseSemaphore
InitializeCriticalSection
GetEnvironmentVariableW
lstrcmpW
IsDebuggerPresent
InterlockedIncrement
GetTempPathW
FindNextFileA
GetProfileStringW
ReadFile
GetLocalTime
GetWindowsDirectoryA
GetThreadPriority
CreateFileA
GetVersionExA
SetThreadPriority
GlobalSize
CloseHandle
ReleaseMutex
DeleteFileW
GetUserDefaultLangID
LeaveCriticalSection
WaitForSingleObject
FindFirstFileA
GetLocaleInfoA
RaiseException

ole32

OleIsCurrentClipboard
OleUninitialize
OleFlushClipboard
CoUninitialize
CreateILockBytesOnHGlobal
CoFreeUnusedLibraries
CoRetireServer
CoTaskMemFree
CoInitialize
CoTaskMemAlloc
CoCreateInstance
CoRegisterMessageFilter
CLSIDFromProgID
CoRevokeClassObject
CoGetClassObject
StgCreateDocfileOnILockBytes
OleInitialize
StgOpenStorageOnILockBytes
CLSIDFromString

gdi32

RestoreDC
GetObjectA
CreatePalette
GetWorldTransform
AbortDoc
DeleteDC
EndDoc
FillPath
SelectPalette
CreateDIBSection
CombineRgn
PolyBezierTo
BitBlt
SetDIBits
StrokePath
SelectClipPath
SetMiterLimit
ExtEscape
ExtSelectClipRgn
StartDocW
SelectObject
SetBrushOrgEx
GetStockObject
SelectClipRgn
SaveDC
SetPolyFillMode
BeginPath
Escape
GetGraphicsMode
CreateCompatibleDC
MoveToEx
GetClipBox
EndPath
OffsetRgn
CreateICW
StretchBlt
CreateRectRgn
ExtCreatePen
SetROP2
StretchDIBits
SetStretchBltMode
CreateCompatibleBitmap
Rectangle
GetRgnBox
ModifyWorldTransform
EndPage
GetRegionData
RealizePalette
CreateBitmap
CreatePolyPolygonRgn
CloseFigure
GetDeviceCaps
CreateBrushIndirect
SetWorldTransform
LineTo
ResetDCW
IntersectClipRect
GetCurrentObject
SetGraphicsMode
GetDIBColorTable
CreateDCW
GetViewportOrgEx
PatBlt
DeleteObject
EqualRgn
StartPage
CreatePatternBrush
PolylineTo
PolyDraw

msimg32

AlphaBlend

Sections

.text
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a54b37948cee69bc3e94799fa37318b

Headers

File Characteristics

Imports

user32

advapi32

shlwapi

kernel32

ole32

gdi32

msimg32

Sections

.text Size: 109KB - Virtual size: 109KB

.rdata Size: 5KB - Virtual size: 5KB

.bss Size: 76KB - Virtual size: 76KB

.edata Size: 1024B - Virtual size: 112KB

.text
Size: 109KB - Virtual size: 109KB

.rdata
Size: 5KB - Virtual size: 5KB

.bss
Size: 76KB - Virtual size: 76KB

.edata
Size: 1024B - Virtual size: 112KB