ac89882ac014d841134415f11b328330_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ac89882ac014d841134415f11b328330_JaffaCakes118
Size

384KB
MD5

ac89882ac014d841134415f11b328330
SHA1

d04f18d8519d79138a4ff39424e253580722de87
SHA256

04cd455eb00ed94b3ad46ed41f62cec412db998b45b1f8e2692e7d61288bcd53
SHA512

a91afa5c55a0b70dc2f9e11497e9c9bf2c1504cc131edeff8d42088b25d946fa57d505e81b62353a135231a90a4628e2fe4ee118a353466bccb1e31c168c88d3
SSDEEP

6144:00bzWMBY9iLFLwQ1eIr1B22G7qddog4qWUWOCT/o5alf/sjP13bTMG:zop8ENq0965i0j1P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ac89882ac014d841134415f11b328330_JaffaCakes118

Files

ac89882ac014d841134415f11b328330_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1d1fd628782369b335de5ddec267aa6e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
GetOEMCP
GetACP
GetCPInfo
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
VirtualAlloc
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetStartupInfoA
GetModuleHandleA
RtlUnwind
HeapReAlloc
GetProcAddress
LCMapStringA
LCMapStringW
GetStringTypeA
CloseHandle
MultiByteToWideChar
LoadLibraryA
lstrcpynA
lstrlenA
CreateFileA
lstrcatA
GetStringTypeW
LocalAlloc
LocalFree
FreeResource
SetErrorMode
GetFileAttributesA
WriteFile
FreeLibraryAndExitThread
MulDiv
lstrcpyA
FreeLibrary
GetDateFormatA
GetTimeFormatA
DisableThreadLibraryCalls
GetCommandLineA
GetEnvironmentStringsW
VirtualProtect

user32

UnregisterClassA
EnableMenuItem
GetFocus
MessageBoxA
PostMessageA
GetTopWindow
ReleaseDC
GetSystemMetrics
PostQuitMessage
DispatchMessageA
TranslateMessage
SendMessageA
CreateWindowExA
LoadStringA
DefWindowProcA
SetWindowLongA
SetFocus
IsWindowVisible
GetWindowLongA
SetForegroundWindow
ShowWindow
GetWindowPlacement
MoveWindow
GetWindowTextA
GetClientRect
WinHelpA
GetSysColor
IsClipboardFormatAvailable
DestroyWindow
GetParent
SetTimer
GetDlgItem
GetDlgItemTextA
SetDlgItemTextA
PeekMessageA
IsDialogMessageA
CreateDialogParamA
EndDialog
IsZoomed
IsIconic
GetWindowRect
CharNextA
SetMenuItemInfoA
wsprintfA
IsWindow
SetRect
InvalidateRect
SetWindowTextA
SystemParametersInfoA
GetSubMenu
TrackPopupMenu
GetDC
DialogBoxParamA

advapi32

RegCloseKey
RegCreateKeyA
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueExA
RegFlushKey
RegSetValueExA
RegOpenKeyA

gdi32

GetStockObject
CreateFontIndirectA
GetObjectA
DeleteObject
GetDeviceCaps
EndDoc
EndPage
TextOutA
StartPage
StartDocA
SetAbortProc
SetMapMode
PatBlt
SelectObject
RealizePalette
SelectPalette
GetTextExtentPointA
DeleteDC
CreateDIBSection
GetTextMetricsA

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 332KB - Virtual size: 331KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 338KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1d1fd628782369b335de5ddec267aa6e

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 332KB - Virtual size: 331KB

.data Size: 12KB - Virtual size: 338KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 332KB - Virtual size: 331KB

.data
Size: 12KB - Virtual size: 338KB

.rsrc
Size: 4KB - Virtual size: 1KB