a5ea13a5acc8b52180ac412f50516450_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a5ea13a5acc8b52180ac412f50516450_JaffaCakes118
Size

699KB
MD5

a5ea13a5acc8b52180ac412f50516450
SHA1

0ee437f4a1e3263747567f5ce0506efbc9a4c951
SHA256

6f2c31378a107a1519a1edbce3271aa07eab27f727313187278bb040dda6d671
SHA512

d2f39bb23e5ba108fc6de4365d8d3ca26799668159c336a5d174952dc2f71640c5316959011a01de90269beef0b4c7bde8f2926730432e2c782c81d1ab982620
SSDEEP

12288:MlhldZ0dBD+gWtiLyBRgJeI/aiGjRGkI0abpeSP+Al7XgI233SGIBIs6E:e7aV3uByJx/aiGskjMZBljgI2HSUE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5ea13a5acc8b52180ac412f50516450_JaffaCakes118

Files

a5ea13a5acc8b52180ac412f50516450_JaffaCakes118
.exe windows:4 windows x86 arch:x86

801bc574bc5547ccdd230b735f2039f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetLastError
ExitProcess
VirtualAlloc
ResetEvent
Sleep
VirtualFree
HeapCreate
CloseHandle
ReadFile
SetFilePointer
TlsFree
RaiseException
HeapSize
WideCharToMultiByte
GetCommandLineW
LockResource
GetEnvironmentStrings
FileTimeToLocalFileTime
lstrlenW
GlobalAlloc
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
SetStdHandle
InterlockedIncrement
HeapAlloc
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
GlobalLock
DuplicateHandle
FindNextFileA
CompareStringA
FindFirstFileA
CompareStringW
GetProcessHeap
GetProcAddress
DeleteFileA
LCMapStringW
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
QueryPerformanceCounter
GetOEMCP
GetCurrentProcessId
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
SetEndOfFile
VirtualQuery
TerminateProcess
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
FlushFileBuffers
IsDebuggerPresent
GetModuleFileNameW
InitializeCriticalSection
FormatMessageA
TlsGetValue
FindClose
LoadResource
GetEnvironmentVariableA
LocalFree
FreeLibrary
SetFileAttributesA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WaitForSingleObject
WriteFile
InterlockedExchange
GetStringTypeA
LoadLibraryW
GetCPInfo
FreeEnvironmentStringsW
SetErrorMode
CreateFileA
lstrcatA
LocalAlloc
GetLocaleInfoA
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetLocalTime
GetFileAttributesW
HeapDestroy
SetEvent
FileTimeToSystemTime
GetStdHandle
GetCurrentThreadId
GetModuleHandleA
GetTickCount
lstrcmpiA
GetCurrentThread

user32

EnableMenuItem
GetSysColor
MessageBoxA
SetDlgItemTextA
SetForegroundWindow
LoadCursorA
ScreenToClient
GetDlgItem
CreateWindowExA
GetSubMenu
SetWindowTextA
EndDialog
SetWindowLongA
PostMessageA
GetWindowRect
GetSystemMetrics
DefWindowProcA
BeginPaint
SetFocus
EndPaint
DispatchMessageA
FillRect
SetTimer
GetWindowLongA
IsIconic
LoadStringA
IsWindowEnabled
EnableWindow
ShowWindow
GetParent
GetMessageA
DestroyWindow
UnregisterClassA
ReleaseDC
GetDC
IsWindow
PostQuitMessage
SetCursor
GetClientRect
DrawTextA
InvalidateRect
SendMessageA
IsWindowVisible

ole32

CoInitialize
CoUninitialize

advapi32

RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegSetValueExA

Sections

.text
Size: 667KB - Virtual size: 990KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

801bc574bc5547ccdd230b735f2039f8

Headers

File Characteristics

Imports

kernel32

user32

ole32

advapi32

Sections

.text Size: 667KB - Virtual size: 990KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 13KB - Virtual size: 12KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 667KB - Virtual size: 990KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 13KB - Virtual size: 12KB

.rsrc
Size: 11KB - Virtual size: 10KB