bc4b503d1b9af02a24ec65e8e7801e9d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bc4b503d1b9af02a24ec65e8e7801e9d_JaffaCakes118
Size

509KB
MD5

bc4b503d1b9af02a24ec65e8e7801e9d
SHA1

73f1f3961fee98aecc4042e412bdd09967f8b018
SHA256

0a15c613f8eb4f7e9ed4c4d5535e1d8c251a278799d4db61f5c1da45e05bc9a2
SHA512

a02bae78eb5022089ec2949770d79d5dd7fccea5b94205d448c77444f66d412255a7067da783e03386464ee135637074f4d12bbbdec13b4242b7018d86d174be
SSDEEP

12288:Ylyfau7nIHvgdD+Yc7HFdWsZDTXvwEnv1ikzKi9BJq5:Ylyfau7+lvNC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc4b503d1b9af02a24ec65e8e7801e9d_JaffaCakes118

Files

bc4b503d1b9af02a24ec65e8e7801e9d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

752ec328572941f3345b01907bdfaef4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

user32

IsWindowUnicode
SetClassLongA
IsCharAlphaNumericW
DeleteMenu
GetWindowLongW
RegisterClassA
RegisterDeviceNotificationW
RegisterClassExA
AdjustWindowRect

kernel32

CompareStringW
GetFileType
GetLastError
HeapDestroy
GetLocaleInfoW
GetModuleFileNameA
VirtualQuery
WaitForSingleObject
CreateDirectoryW
GetConsoleOutputCP
SetEnvironmentVariableA
HeapReAlloc
GetCurrentThreadId
GetSystemDefaultLangID
CompareStringA
GetTickCount
GetCommandLineA
GetConsoleCursorInfo
GetCurrentThread
GetACP
GetEnvironmentStrings
DeleteCriticalSection
InterlockedDecrement
CreateFileA
LoadModule
GetCurrentProcessId
InitializeCriticalSection
QueryPerformanceCounter
GetModuleFileNameW
GetLocaleInfoA
VirtualAlloc
GetStdHandle
GetStartupInfoW
GetEnvironmentStringsW
HeapFree
HeapSize
SetConsoleCtrlHandler
GetCurrentProcess
SetLastError
HeapAlloc
TlsSetValue
SetHandleCount
GetModuleHandleA
ReadFile
FlushFileBuffers
TerminateProcess
SetUnhandledExceptionFilter
GetOEMCP
RtlUnwind
SetCurrentDirectoryW
GetTimeZoneInformation
EnumSystemLocalesA
GetPrivateProfileStructW
LeaveCriticalSection
VirtualFree
LCMapStringA
TlsFree
Sleep
GetStringTypeA
GetSystemDefaultLCID
GetProcessHeap
OpenMutexA
InterlockedExchange
SetFilePointer
WriteFile
GetCommandLineW
GlobalDeleteAtom
TlsAlloc
LoadLibraryA
HeapCreate
WriteConsoleA
GetTimeFormatA
GetCPInfo
GetSystemTimeAsFileTime
InterlockedIncrement
IsDebuggerPresent
CreateMutexA
GetUserDefaultLCID
GetProcAddress
GetDateFormatA
ExitProcess
FreeEnvironmentStringsA
EnterCriticalSection
FreeEnvironmentStringsW
LCMapStringW
UnhandledExceptionFilter
GetConsoleMode
WriteConsoleW
SetStdHandle
GetStringTypeW
IsValidLocale
WideCharToMultiByte
CloseHandle
GetStartupInfoA
IsValidCodePage
GetConsoleCP
TlsGetValue
GetVersionExA
MultiByteToWideChar
FreeLibrary

gdi32

DescribePixelFormat
SetMapperFlags
GetPixel
GdiSetBatchLimit
CreateFontIndirectA
StartDocW
AnimatePalette
CreatePatternBrush
SetICMProfileW

Sections

.text
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 314KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

752ec328572941f3345b01907bdfaef4

Headers

File Characteristics

Imports

comctl32

user32

kernel32

gdi32

Sections

.text Size: 175KB - Virtual size: 174KB

.rdata Size: 9KB - Virtual size: 17KB

.data Size: 314KB - Virtual size: 314KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 175KB - Virtual size: 174KB

.rdata
Size: 9KB - Virtual size: 17KB

.data
Size: 314KB - Virtual size: 314KB

.rsrc
Size: 9KB - Virtual size: 9KB