a9900a62cbdd3b5c81be1af6abd6529d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a9900a62cbdd3b5c81be1af6abd6529d_JaffaCakes118
Size

200KB
MD5

a9900a62cbdd3b5c81be1af6abd6529d
SHA1

e9b922e0fd188b4cb2aac6491f4a1fdeea96454d
SHA256

2610de72bef8bd531c74173be512aed5ed1e552162a3c4285c656741c7868241
SHA512

f4aa85e25f36d75206ce6a3df7286c53f5ed259c41f0a77c4da78b97df506ee47b504d4c08851927c33a48bc342ffa0d406fcece94cf9dc7cac755d5543051ce
SSDEEP

6144:XxM1j1h+mxeoC9tQbdQoXJASYyqOeHJEG/XTO:B0XBel6BbYHO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a9900a62cbdd3b5c81be1af6abd6529d_JaffaCakes118

Files

a9900a62cbdd3b5c81be1af6abd6529d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

71ad1bf31ae527de738917aeb3622df2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowRect
wsprintfA
SetDlgItemTextA
GetClientRect
BeginPaint
SetCursor
InvalidateRect
LoadStringA
GetDC
DialogBoxParamA
GetFocus
GetSysColor
LoadIconA
SetFocus
LoadCursorA
GetSystemMetrics
IsWindow
CharNextA
ShowWindow
PeekMessageA

advapi32

QueryServiceStatus
ControlService
LookupPrivilegeValueA
OpenProcessToken
RegQueryValueExA
RegQueryInfoKeyA
GetTokenInformation
AdjustTokenPrivileges
EqualSid
GetUserNameA
RegOpenKeyExA
SetSecurityDescriptorDacl
OpenServiceA
AllocateAndInitializeSid
OpenSCManagerA
UnlockServiceDatabase
RegisterServiceCtrlHandlerA
DeleteService
QueryServiceConfig2A
GetSecurityDescriptorControl
LockServiceDatabase

ole32

CoMarshalInterThreadInterfaceInStream
CoUninitialize
CoTaskMemAlloc
CoFreeUnusedLibraries
CoInitializeEx
ReleaseStgMedium
CoInitialize
CreateBindCtx
CLSIDFromProgID
CreateStreamOnHGlobal
CoCreateInstance
OleInitialize
CoUnmarshalInterface
CoRevokeClassObject
CoTaskMemFree
CoGetInterfaceAndReleaseStream
CoGetClassObject
CoCreateFreeThreadedMarshaler
StringFromCLSID
CLSIDFromString
StringFromGUID2
OleRegGetUserType

kernel32

OpenEventA
GetLocaleInfoA
CopyFileA
DeleteFileA
IsBadWritePtr
ExitThread
SetFileAttributesA
GetProcAddress
ExitProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
HeapReAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
WriteFile
WritePrivateProfileStringA
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
VirtualAlloc
MulDiv
GetEnvironmentStrings

Sections

.text
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

71ad1bf31ae527de738917aeb3622df2

Headers

File Characteristics

Imports

user32

advapi32

ole32

kernel32

Sections

.text Size: 52KB - Virtual size: 48KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 140KB - Virtual size: 140KB

.text
Size: 52KB - Virtual size: 48KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 140KB - Virtual size: 140KB