a6ce50424d82596e6c1fa4a484d0a448_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a6ce50424d82596e6c1fa4a484d0a448_JaffaCakes118
Size

557KB
MD5

a6ce50424d82596e6c1fa4a484d0a448
SHA1

308bfb3e42bd8b11bd4df09d6aada7f40ca7d792
SHA256

d12393628518ceb0288ac9361e06ee515c5719a93f24497a1f9281f3c5a66aec
SHA512

3712fe503c4e671147dc0e690cbc55c86e18eb083c534a31225f9bcc66e54ca77017f28ebef4320cb92366600697b3d2b6c31a049bbdd700a694c5de4b54fb61
SSDEEP

12288:z9tQK5hoFsKHbmnsWQUq+VPRqBd62XKEwX7xwDM6LsUOJTpjPEgprPGgSlsx:jQqhoFsKHbmns3X+VPsxXD6UmdJp6A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a6ce50424d82596e6c1fa4a484d0a448_JaffaCakes118

Files

a6ce50424d82596e6c1fa4a484d0a448_JaffaCakes118
.exe windows:4 windows x86 arch:x86

caf39a0bb2bade58a27bab38b7fbf22d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawCaption
CharLowerBuffA
CheckRadioButton
RegisterClassExA
SetWindowsHookA
GetAncestor
GetMenuItemCount
GetMenuItemInfoA
DdeClientTransaction
OemToCharBuffA
CharToOemA
GetMenuState
GetTabbedTextExtentA
HideCaret
RegisterClassA
DrawIconEx
TabbedTextOutA
MonitorFromRect
SetUserObjectInformationA
SetDeskWallpaper
CreateDesktopW

kernel32

LCMapStringA
EnumCalendarInfoExW
FlushFileBuffers
GetCurrentThreadId
GetStartupInfoW
GetTickCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InitializeCriticalSection
Sleep
HeapAlloc
TlsSetValue
IsValidLocale
GetStringTypeA
SetHandleCount
HeapCreate
FillConsoleOutputCharacterW
RtlUnwind
FreeEnvironmentStringsA
VirtualQuery
SetLastError
LoadLibraryA
LeaveCriticalSection
GetCommandLineW
CloseHandle
TlsAlloc
GetACP
GetCurrentProcessId
GetTimeZoneInformation
WriteConsoleA
TerminateProcess
GetCPInfo
GetEnvironmentStringsW
CreateFileA
HeapSize
FreeLibrary
LocalFlags
HeapDestroy
HeapReAlloc
MultiByteToWideChar
GetTimeFormatA
DeleteCriticalSection
ReadFile
GetVersionExW
CompareStringA
HeapFree
SetConsoleCtrlHandler
GetModuleHandleA
GlobalFindAtomA
GetModuleFileNameA
QueryPerformanceCounter
GetFileType
GetModuleFileNameW
GetSystemTimeAsFileTime
SetFilePointer
LCMapStringW
EnumSystemLocalesA
CompareStringW
ReadConsoleOutputW
GetOEMCP
GetDateFormatA
GetProcessHeap
GetStringTypeW
GetConsoleOutputCP
EnterCriticalSection
GetLocaleInfoW
GetStartupInfoA
TlsFree
GetEnvironmentStrings
GetCalendarInfoW
InterlockedDecrement
GetConsoleCP
GetStdHandle
FreeEnvironmentStringsW
WriteConsoleW
GetCommandLineA
GetCurrentThread
TransmitCommChar
VirtualFree
TlsGetValue
WriteFile
GetConsoleMode
IsValidCodePage
VirtualAlloc
OpenMutexA
CreateDirectoryExA
GetLastError
IsDebuggerPresent
VirtualLock
InterlockedIncrement
GetVersionExA
ExitProcess
GetUserDefaultLCID
SetStdHandle
SetEnvironmentVariableA
CreateMailslotW
GetProcAddress
GetLocaleInfoA
CreateMutexA
WideCharToMultiByte
InterlockedExchange
GetCurrentProcess

comctl32

InitCommonControlsEx

Sections

.text
Size: 225KB - Virtual size: 225KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

caf39a0bb2bade58a27bab38b7fbf22d

Headers

File Characteristics

Imports

user32

kernel32

comctl32

Sections

.text Size: 225KB - Virtual size: 225KB

.rdata Size: 9KB - Virtual size: 39KB

.data Size: 315KB - Virtual size: 315KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 225KB - Virtual size: 225KB

.rdata
Size: 9KB - Virtual size: 39KB

.data
Size: 315KB - Virtual size: 315KB

.rsrc
Size: 6KB - Virtual size: 5KB