b25672510d00721c43a202fe2a296100_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b25672510d00721c43a202fe2a296100_JaffaCakes118
Size

34KB
MD5

b25672510d00721c43a202fe2a296100
SHA1

a3d98bbc1588e035c025484ab430d11196b43c8b
SHA256

36e18f8741f4044d0306d57437dbc377c0bb7ded63bc7039817d6048de460b35
SHA512

9c751930003dec9daef8101d8b8e7d4e00ab8f6699ef138ef2a882d49f9f04ade6cbb47a53b6c28857dc345ea2119614494f1d23af2110174bc9c51ca3e0e4a4
SSDEEP

768:yJnBXxQ6WXewXYqYGYoOd1GSN+cotyoPqvj9Sn+c8lZS:6xQ6RfbGSocToPqZS7h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b25672510d00721c43a202fe2a296100_JaffaCakes118

Files

b25672510d00721c43a202fe2a296100_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fe2fbc0422d7e58cab4bf3445c817c14

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

crtdll

memset
strncmp
atof
strcpy
strlen
strncpy
strcat
localtime
mktime
_strnicmp
gmtime

user32

wsprintfA
KillTimer
SetTimer
wvsprintfA
LoadCursorA
LoadIconA
RegisterClassA
GetSysColor
PeekMessageA
GetActiveWindow
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
AdjustWindowRect
GetSystemMetrics
GetWindowRect
CreateWindowExA
ShowWindow
SetWindowLongA
GetMessageA
GetClassNameA
GetWindowLongA
PostMessageA
GetParent
DefWindowProcA
SendMessageA
GetWindow
EnableWindow
SetWindowPos
SetFocus
SetActiveWindow
DestroyWindow
UnregisterClassA
DestroyAcceleratorTable
IsWindowEnabled
IsWindowVisible
GetFocus
IsChild
EnumChildWindows
GetKeyState
CreateAcceleratorTableA
SetCursorPos
LoadImageA
SetCursor
SystemParametersInfoA
SetCapture
GetCursorPos
MapWindowPoints
ReleaseCapture
MoveWindow

advapi32

RegCreateKeyA
RegSetValueExA
RegCloseKey

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle

urlmon

URLDownloadToFileA

gdi32

CreateBrushIndirect

kernel32

GetModuleHandleA
GetCommandLineA
ExitProcess
HeapCreate
GetModuleFileNameA
GetEnvironmentVariableA
GetCurrentDirectoryA
HeapDestroy
HeapReAlloc
FreeLibrary
GetProcAddress
HeapAlloc
LoadLibraryA
IsBadReadPtr
HeapFree
GlobalFree
GlobalAlloc
WaitForSingleObject
GetTickCount
Sleep
DeleteFileA
CreateFileA
CloseHandle
ReadFile
SetFilePointer
GetFileSize
WriteFile
GetLocalTime

shell32

FindExecutableA
ShellExecuteExA

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.flat
Size: 1024B - Virtual size: 617B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fe2fbc0422d7e58cab4bf3445c817c14

Headers

File Characteristics

Imports

crtdll

user32

advapi32

wininet

urlmon

gdi32

kernel32

shell32

Sections

.text Size: 29KB - Virtual size: 29KB

.data Size: 3KB - Virtual size: 3KB

.flat Size: 1024B - Virtual size: 617B

.text
Size: 29KB - Virtual size: 29KB

.data
Size: 3KB - Virtual size: 3KB

.flat
Size: 1024B - Virtual size: 617B