bd38bd3b522a42f49df24096617dcaaa_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bd38bd3b522a42f49df24096617dcaaa_JaffaCakes118
Size

120KB
MD5

bd38bd3b522a42f49df24096617dcaaa
SHA1

741ff579921632f4c95fae4861855c89eac770a8
SHA256

3541cbc22c10bd143e8888ede92bc4bdf3f92b779403e565eda1dba6d1da71b7
SHA512

6a6dbb62e7aa3144b66000916c3e8c55aef2a2ca65d9a58ec4ef55e76a4a8dc93642005561db9530e513c729202fa8097e834c756dae4fac70aa21e6a15dbec4
SSDEEP

3072:5ox/CmjlFS6L9R6au/NYZ7uXYCc05Chft:5oFCIXnZuFe7mYbxt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd38bd3b522a42f49df24096617dcaaa_JaffaCakes118

Files

bd38bd3b522a42f49df24096617dcaaa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b412b1a5d86bc5091a7a98e2d58b4efe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
HeapSize
HeapAlloc
GetFileAttributesW
GetSystemTimeAsFileTime
TlsSetValue
EnterCriticalSection
GetStringTypeA
CreateEventW
GetCurrentProcessId
SetEndOfFile
FindClose
FreeLibrary
GetACP
FreeEnvironmentStringsW
UnhandledExceptionFilter
RaiseException
FindResourceW
CloseHandle
GetFullPathNameW
IsValidCodePage
SetStdHandle
LCMapStringA
CompareStringA
LeaveCriticalSection
CreateMutexW
CompareStringW
InterlockedDecrement
SetEvent
ExpandEnvironmentStringsW
GetLocaleInfoW
LockResource
GetStringTypeW
FreeEnvironmentStringsA
GetUserDefaultLCID
VirtualAlloc
GetTimeZoneInformation
SetHandleCount
ResumeThread
MulDiv
GetConsoleOutputCP
CreateFileA
SizeofResource
lstrcatW
HeapCreate
SetCurrentDirectoryW
GetTimeFormatW
lstrlenW
WriteFile
lstrcpynW
GetProcAddress
LoadLibraryA
VirtualProtect
GetLocaleInfoA
FlushFileBuffers
LCMapStringW
MultiByteToWideChar
SetFilePointer
ReadFile
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
VirtualQuery
InterlockedExchange
RtlUnwind
IsBadWritePtr
HeapReAlloc
GetCPInfo
GetOEMCP
HeapFree
VirtualFree
HeapDestroy
GetFileType
GetEnvironmentStringsW
GetLastError
WideCharToMultiByte
GetEnvironmentStrings
GetModuleFileNameA
GetStdHandle
GetCurrentProcess
TerminateProcess
GetSystemInfo
ExitProcess
GetVersionExA
GetCommandLineA
GetStartupInfoA
GetModuleHandleA

user32

UpdateWindow
DragDetect
SetClipboardData
SetWindowPlacement
GetDC
SystemParametersInfoW
RemoveMenu
GetMenu
GetWindowTextW
GetActiveWindow
CheckMenuRadioItem
LoadImageW
SetWindowLongA
IsIconic
DestroyIcon
GetCursorPos
CreateWindowExW
LoadStringW
DrawFocusRect
DispatchMessageW
GetFocus
CreateAcceleratorTableW
EmptyClipboard
ReleaseCapture
DestroyWindow
ModifyMenuW
ShowWindow
ToAscii
InsertMenuW
IsDialogMessageW
SendMessageW
GetKeyState
GetDlgItemTextW
GetScrollRange
GetMessageW
EndPaint
LoadCursorW
GetWindowPlacement
OpenClipboard
DrawTextW
RealChildWindowFromPoint
MapWindowPoints
IsDialogMessageA
RedrawWindow
DeleteMenu
GetScrollPos
IsChild
GetSystemMetrics
GetWindowRect
DestroyCaret
SetWindowLongW
EndDialog
IsWindowVisible
UnhookWindowsHookEx
mouse_event
InsertMenuItemW
wsprintfW

comdlg32

GetSaveFileNameW
PageSetupDlgA
ChooseColorW
ChooseColorA
FindTextW
ReplaceTextW
GetFileTitleW
ChooseFontA
ReplaceTextA
PrintDlgW
PageSetupDlgW
GetSaveFileNameA
GetOpenFileNameA
ChooseFontW
PrintDlgA
FindTextA

oleaut32

VariantCopy

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b412b1a5d86bc5091a7a98e2d58b4efe

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

oleaut32

Sections

.text Size: 39KB - Virtual size: 39KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 67KB - Virtual size: 148KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 39KB - Virtual size: 39KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 67KB - Virtual size: 148KB

.rsrc
Size: 4KB - Virtual size: 4KB