b37e09e532e53d54506444eea10ade84_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b37e09e532e53d54506444eea10ade84_JaffaCakes118
Size

160KB
MD5

b37e09e532e53d54506444eea10ade84
SHA1

f1024791e96ad121004669dc3ddd4fc9f2562aa8
SHA256

97130cacf07b3bb2140c7dbdbbde4aedab7cf7cc57936fe8054c5fed5699a5be
SHA512

e3bc94e73ee2afec42bf2bb283548e7f5fc541a4499b16fecd7fb398738e201545007d8e78732248876774438ffa73a6539237636de41d46fb5553fe6ccc867d
SSDEEP

3072:P4sKla3bUhthrCz9A7Kz5uYklmj8h4srPVgCTg4sNf:P4sKIrULxCz9Ac4YklrRbDTf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b37e09e532e53d54506444eea10ade84_JaffaCakes118

Files

b37e09e532e53d54506444eea10ade84_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f8936fe884a13498b2ee47adc82b825b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
CloseHandle
FreeEnvironmentStringsW
GetLocaleInfoW
FlushFileBuffers
SetFilePointer
SetStdHandle
GetLocaleInfoA
LoadLibraryA
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
SetUnhandledExceptionFilter
VirtualAlloc
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
VirtualFree
HeapCreate
HeapDestroy
DeleteCriticalSection
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
WideCharToMultiByte
GetEnvironmentStringsW
GetEnvironmentStrings
GetModuleHandleA
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetLastError
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetVersionExA
HeapFree
HeapSize
HeapAlloc
HeapReAlloc
GetCurrentProcess
MulDiv
TerminateProcess
GetProcAddress
InterlockedIncrement
lstrcatA
lstrcmpA
GetNumberFormatA
MultiByteToWideChar
lstrcpyA
CreateFileA
ReadFile
GetFileSize
ExitProcess
InterlockedDecrement
lstrlenA
GetVersion
GetCommandLineA
GetStartupInfoA
RtlUnwind

user32

DrawCaptionTempA
LoadMenuA
LoadStringA
ReleaseDC
GetDC
SetSysColorsTemp
GetSystemMetrics
SystemParametersInfoA
GetSysColor
SendMessageA
wsprintfA
SwapMouseButton
SetSysColors
GetDesktopWindow
SetWindowLongA
GetDlgItem
SendDlgItemMessageA
SetDlgItemTextA
GetWindowLongA
MessageBoxA
GetWindow
GetDlgCtrlID
GetTopWindow
RegisterClassA
LoadCursorA
DefWindowProcA
EndPaint
BeginPaint
InvalidateRect
GetClientRect
HiliteMenuItem
GetMessagePos
SetFocus
PtInRect
GetFocus
SetTimer
CreateWindowExA
EnableWindow
ChangeDisplaySettingsA
SendNotifyMessageA
FindWindowA
EnumDisplaySettingsA
LoadIconA
SetWindowPos
ShowWindow
GetWindowRect
ScreenToClient
SetWindowTextA
GetParent
PostMessageA
InflateRect
OffsetRect
LoadImageA
FillRect
DrawEdge
DrawFrameControl
DrawTextA
DestroyIcon
EnableMenuItem

gdi32

SetTextColor
GetTextMetricsA
SelectPalette
CreateFontIndirectA
SetTextAlign
Rectangle
PatBlt
GetTextExtentPoint32A
SaveDC
SetBkMode
GetTextColor
SetBkColor
ExtTextOutA
TextOutA
RestoreDC
RealizePalette
DeleteObject
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateBitmap
CreatePalette
SelectObject
CreateSolidBrush
SetPaletteEntries
GetStockObject
GetNearestColor
GetNearestPaletteIndex
GetPaletteEntries
GetDeviceCaps

comdlg32

GetSaveFileNameA

advapi32

RegEnumValueA
RegCloseKey
RegCreateKeyA
RegQueryValueExA
RegEnumKeyA
RegOpenKeyA
RegSetValueExA

shell32

ShellExecuteA

comctl32

PropertySheetA

shlwapi

StrTrimA

Sections

.text
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f8936fe884a13498b2ee47adc82b825b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

comctl32

shlwapi

Sections

.text Size: 72KB - Virtual size: 69KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 20KB - Virtual size: 33KB

.idata Size: 8KB - Virtual size: 4KB

.rsrc Size: 48KB - Virtual size: 47KB

.text
Size: 72KB - Virtual size: 69KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 20KB - Virtual size: 33KB

.idata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 48KB - Virtual size: 47KB