b7cd5003d3d035fa67a573c784e8deb8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b7cd5003d3d035fa67a573c784e8deb8_JaffaCakes118
Size

291KB
MD5

b7cd5003d3d035fa67a573c784e8deb8
SHA1

f33ed5fb647510046ad20cf590585b36d4f3bf75
SHA256

92e89ed2735e40c3dff7576bfc484257060cbc5e49d07064a8874a82e1d62b58
SHA512

269b789ce7802776af53445144307cdad20802d0d6a47037845c9b9988ea7b7e478e70fe18d98e091d213ed2af7287298d30318df3d663f3fcbf97565153f05e
SSDEEP

6144:B+Lkd3eNGUTwMqLDiRcgLdLGTEWtQvPtpFLu:B+Id3eqvFgRaZQvh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7cd5003d3d035fa67a573c784e8deb8_JaffaCakes118

Files

b7cd5003d3d035fa67a573c784e8deb8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4d08c6ecfb3f3c1affe71280897d4311

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey

kernel32

GetModuleHandleW
GetACP
lstrcpynA
CloseHandle
ReadFile
SetFilePointer
TlsFree
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCPInfo
GetCommandLineW
LockResource
GetCurrentProcessId
WritePrivateProfileStringA
SizeofResource
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
lstrlenA
UnmapViewOfFile
LCMapStringW
GetLastError
LeaveCriticalSection
ExitProcess
TlsSetValue
GetFileType
CreateEventA
CreateFileW
Sleep
GetTimeZoneInformation
ExpandEnvironmentStringsA
WaitForMultipleObjects
DuplicateHandle
FindNextFileA
GetCurrentThreadId
lstrcmpA
CompareStringW
GetProcessHeap
GetSystemInfo
GetProcAddress
DeleteFileW
SetEvent
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
GetTickCount
QueryPerformanceCounter
FreeLibrary
SetHandleCount
EnterCriticalSection
WriteConsoleW
SetCurrentDirectoryA
InterlockedIncrement
GetVersion
SetEndOfFile
SetUnhandledExceptionFilter
TerminateProcess
GetSystemDirectoryA
CreateFileA
CreateThread
GetModuleHandleA
CreateMutexA
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
SetStdHandle
GetModuleFileNameW
InterlockedDecrement
SetLastError
TlsGetValue
FindClose
LoadResource
CreateEventW
GetExitCodeProcess
LocalFree
GetOEMCP
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
WideCharToMultiByte
GetTempPathA
FreeEnvironmentStringsW
LoadLibraryExW
LocalAlloc
GetLocaleInfoA
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetLocalTime
HeapFree
HeapDestroy
FindFirstFileW
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
GetConsoleOutputCP
GetStdHandle
VirtualAlloc
FindResourceA
VirtualFree
FindResourceW
HeapCreate
IsValidCodePage
IsDebuggerPresent

user32

EndDialog
SetForegroundWindow
TrackPopupMenu
ScreenToClient
GetDlgItem
CreateWindowExA
GetWindowLongA
SetWindowLongA
GetWindowRect
GetSystemMetrics
DefWindowProcA
BeginPaint
EndPaint
FillRect
SetTimer
GetSubMenu
EnableMenuItem
DispatchMessageA
LoadStringA
GetWindow
TranslateMessage
SetWindowPos
PeekMessageA
EnableWindow
ShowWindow
UpdateWindow
GetParent
GetMessageA
DestroyWindow
GetClientRect
ReleaseDC
GetCursorPos
GetDC
IsWindow
PostQuitMessage
MoveWindow
MessageBoxA
GetSysColor
InvalidateRect
SendMessageA
GetFocus
SetCursor
MessageBeep

gdi32

SetBkColor
GetDeviceCaps
GetStockObject
SetTextColor
SelectObject
SetBkMode

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 270KB - Virtual size: 269KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d08c6ecfb3f3c1affe71280897d4311

Headers

File Characteristics

Imports

advapi32

kernel32

user32

gdi32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 270KB - Virtual size: 269KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 270KB - Virtual size: 269KB

.rsrc
Size: 6KB - Virtual size: 5KB