b834d0e7c9d010c85b354380b00ab720_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b834d0e7c9d010c85b354380b00ab720_JaffaCakes118
Size

116KB
MD5

b834d0e7c9d010c85b354380b00ab720
SHA1

c61648b7c2873e001e2ebc930db6e9d2820792b1
SHA256

3e9695aad7be143a4c9f0f7664e50a157c7eadba68451633ec899c6c114f78b0
SHA512

3188fc439fe3d985a998df204e9297e684e844b9f7d551e7206b9139ea682cfddf1919341fa50821cfb883483b7c3fe192b9273a96e1f46eb507bb7ff0ee7213
SSDEEP

3072:oFJIxyQR7XDH5BvgUtE3ZeWNwUpwcUP6VPhClqIyYyRzbBi2vPXP6THUXapJnkfR:oFGxyQ1z3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b834d0e7c9d010c85b354380b00ab720_JaffaCakes118

Files

b834d0e7c9d010c85b354380b00ab720_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a0b9d42fb5aee61a98ab962e2f21b183

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocaleInfoA
GetThreadLocale
GetVersionExW
MultiByteToWideChar
Sleep
ExitProcess
CloseHandle
CreateFileW
GetFileAttributesW
GetLocalTime
GetTempPathW
OutputDebugStringW
FindClose
FindNextFileW
DeleteFileW
FindFirstFileW
lstrlenA
SetUnhandledExceptionFilter
GetTickCount
GetProcAddress
LoadLibraryA
OutputDebugStringA
VirtualProtect
VirtualFree
VirtualAlloc
FlushInstructionCache
GetCurrentProcess
InterlockedIncrement
GlobalFree
InterlockedDecrement
GlobalAlloc
WideCharToMultiByte
GetModuleHandleW
CreateThread
HeapSize
ReadFile
SetEndOfFile
GetSystemInfo
GetACP
GetCurrentProcessId
QueryPerformanceCounter
InitializeCriticalSection
CreateFileA
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetCPInfo
GetOEMCP
SetFilePointer
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
WriteFile
TerminateProcess
HeapReAlloc
DeleteCriticalSection
HeapCreate
HeapDestroy
LeaveCriticalSection
EnterCriticalSection
TlsGetValue
TlsSetValue
TlsFree
GetLastError
GetCurrentThreadId
SetLastError
TlsAlloc
VirtualQuery
GetVersionExA
GetCommandLineA
GetSystemTimeAsFileTime
InterlockedExchange
GetStartupInfoA
GetModuleHandleA
RtlUnwind
HeapFree
HeapAlloc

user32

GetWindow
PostMessageW
SetWindowTextW
SendMessageW
wsprintfW
FindWindowExW
GetClassNameW
GetClassInfoExW
RegisterClassExW
DialogBoxParamW
CallWindowProcW
UpdateWindow
CreateDialogParamW
MoveWindow
RedrawWindow
GetWindowTextW
GetDlgItem
GetMenu
EndDialog
SetWindowLongW
DestroyWindow
ShowWindow
SetFocus
GetMessageW
TranslateAcceleratorW
IsDialogMessageW
TranslateMessage
DispatchMessageW
DestroyAcceleratorTable
PostQuitMessage
DefWindowProcW
CreateAcceleratorTableW
GetClientRect
SetWindowPos
GetWindowLongW
GetWindowRect
GetParent
ScreenToClient

shell32

SHGetFolderPathA
SHGetFolderPathW

ole32

OleInitialize
CoGetClassObject
OleSetContainedObject

oleaut32

DispCallFunc
VariantInit
SysAllocString
VariantClear

wininet

InternetSetOptionW

comctl32

ord17

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a0b9d42fb5aee61a98ab962e2f21b183

Headers

File Characteristics

Imports

kernel32

user32

shell32

ole32

oleaut32

wininet

comctl32

Sections

.text Size: 52KB - Virtual size: 50KB

.rdata Size: 48KB - Virtual size: 45KB

.data Size: 8KB - Virtual size: 17KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 52KB - Virtual size: 50KB

.rdata
Size: 48KB - Virtual size: 45KB

.data
Size: 8KB - Virtual size: 17KB

.rsrc
Size: 4KB - Virtual size: 2KB