bca2ea67f6519a764ce50e60b9b3a456_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bca2ea67f6519a764ce50e60b9b3a456_JaffaCakes118
Size

167KB
MD5

bca2ea67f6519a764ce50e60b9b3a456
SHA1

a58fe5263f8036141fe0495cc9a4b81a6bb10a0a
SHA256

512830b52f2450693558aaff97eadc22665efd4e2fe4b78ae7bb7536d1b5cc44
SHA512

95cb6274e8bbe10d899f25e4d3613d13467360c91c9d8388c43286e5197bdfaf2d149c3bbb9a9f2459ad87074163b3a2f24fabb202438da14b25d919758d9a58
SSDEEP

3072:heNk+vLjPiPmCoCOWKFTxFFBEhqKa1X2okduJPgcxwujfUJt5eTcD:heNk+vy5oPWKFTxFDEDaV2smawujfCP+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bca2ea67f6519a764ce50e60b9b3a456_JaffaCakes118

Files

bca2ea67f6519a764ce50e60b9b3a456_JaffaCakes118
.exe windows:4 windows x86 arch:x86

93899ed56104c3a0721a70ee49401bdc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

EnumFontFamiliesExA
Rectangle
CreateSolidBrush
SetTextColor
CreateFontIndirectA
RestoreDC
DeleteDC
GetDeviceCaps
GetTextExtentPoint32A
DeleteMetaFile
DeleteObject
CreateRectRgn
GetObjectA
SaveDC
SetBkMode
BitBlt
SelectObject
GetStockObject
TextOutA
CreateCompatibleDC
CreateCompatibleBitmap

user32

GetDC
LoadCursorA
GetWindowLongA
IsWindow
SetWindowPos
GetSysColor
ReleaseDC
SetCursor
ReleaseCapture
SetWindowLongA
MoveWindow
FillRect
GetWindowInfo
GetDlgItem
SetCapture

ole32

CoGetMalloc
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

oleacc

LresultFromObject
CreateStdAccessibleObject

winmm

mciSendCommandA
sndPlaySoundA

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation

kernel32

HeapAlloc
TerminateProcess
LocalAlloc
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
GetCalendarInfoW
IsDebuggerPresent
GetLocaleInfoA
GetTickCount
HeapDestroy
LoadLibraryW
WideCharToMultiByte
MultiByteToWideChar
HeapSize
InterlockedExchange
UnhandledExceptionFilter
lstrlenW
GetProcessHeap
GetCurrentProcessId
lstrlenA
GetSystemTime
LoadLibraryExW
QueryPerformanceCounter
EnumResourceNamesA
InterlockedCompareExchange
WriteFile
GetStartupInfoA
Sleep
HeapReAlloc
CreateFileW
GetACP
GetThreadLocale
SystemTimeToFileTime
FindFirstFileW
GetStdHandle
GetCurrentThreadId
CloseHandle
GetCurrentProcess
GetEnvironmentVariableA
HeapFree
CreateProcessA
GetModuleHandleA
RaiseException
lstrcpynW

advapi32

RegEnumKeyExA
RegCloseKey
RegCreateKeyExA
RegQueryValueExA
RegDeleteKeyA
RegOpenKeyA
RegOpenKeyExA
RegSetValueExA

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Sections

.text
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93899ed56104c3a0721a70ee49401bdc

Headers

File Characteristics

Imports

gdi32

user32

ole32

oleacc

winmm

shell32

kernel32

advapi32

version

Sections

.text Size: 94KB - Virtual size: 94KB

.rdata Size: 3KB - Virtual size: 2KB

.bss Size: 67KB - Virtual size: 67KB

.rsrc Size: 1024B - Virtual size: 104KB

.text
Size: 94KB - Virtual size: 94KB

.rdata
Size: 3KB - Virtual size: 2KB

.bss
Size: 67KB - Virtual size: 67KB

.rsrc
Size: 1024B - Virtual size: 104KB