bf654abe47240c15bc999081e2fff366_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

bf654abe47240c15bc999081e2fff366_JaffaCakes118
Size

156KB
MD5

bf654abe47240c15bc999081e2fff366
SHA1

2a4d6e89ed9d56fb841cf3f6d033bae4525aaa33
SHA256

f4d0b2bc6e727642af83c4abea1b9d16e598e717270ecfc6fbc531002805fd00
SHA512

e1fddecdbe5e312adc4e9e645821a1ce0536343f2a5a50b6c601b28222d01ca3f43e42bcff3c6b00e9a46923c88d8b5b4fd01bbf9f9db5bbc9791eb34384e10e
SSDEEP

3072:kVYWlxVcRjhXZpAOk6l2M/FWKvaI4WubdCnIs:yY+Vwj9G9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bf654abe47240c15bc999081e2fff366_JaffaCakes118

Files

bf654abe47240c15bc999081e2fff366_JaffaCakes118
.exe windows:4 windows x86 arch:x86

34ad55647549b939d20702bef62e8721

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA

kernel32

FindClose
GetWindowsDirectoryA
FindFirstFileA
FindNextFileA
GetPrivateProfileStringA
OutputDebugStringA
GetTempPathA
MultiByteToWideChar
InterlockedIncrement
DebugBreak
GetSystemDirectoryA
GetLastError
GetModuleFileNameA
CreateMutexA
HeapDestroy
CloseHandle
DeleteCriticalSection
DeleteFileA
LeaveCriticalSection
GetEnvironmentStrings
IsBadCodePtr
SetUnhandledExceptionFilter
RaiseException
LocalFree
SetEndOfFile
LoadLibraryA
GetProcAddress
CreateFileA
FlushFileBuffers
SetStdHandle
LCMapStringW
LCMapStringA
WriteFile
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
InterlockedDecrement
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
TerminateProcess
GetStringTypeW
GetStringTypeA
SetFilePointer
ReadFile
GetOEMCP
GetACP
GetCPInfo
RtlUnwind
HeapReAlloc
VirtualAlloc
InitializeCriticalSection
EnterCriticalSection
VirtualFree
HeapCreate
GetVersionExA
GetEnvironmentVariableA
HeapAlloc
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetCurrentThreadId
GetCurrentProcess
FlushInstructionCache
lstrlenA
GetModuleHandleA
HeapFree
Sleep

user32

GetSysColor
InvalidateRect
IsWindow
RedrawWindow
DestroyCursor
SendMessageA
DefWindowProcA
WindowFromPoint
LoadImageA
ClientToScreen
SetCapture
GetCapture
GetParent
GetActiveWindow
CallWindowProcA
ScreenToClient
GetCursorPos
LoadBitmapA
FindWindowA
CharNextA
wvsprintfA
ReleaseCapture
GetWindow
MapWindowPoints
SetWindowPos
GetSystemMetrics
SetTimer
PeekMessageA
EnableWindow
SetWindowTextA
KillTimer
ShowWindow
MessageBoxA
EndDialog
GetDesktopWindow
BeginPaint
EndPaint
DestroyWindow
DialogBoxParamA
FillRect
GetWindowLongA
SetWindowLongA
LoadStringA
FrameRect
InflateRect
GetWindowTextLengthA
GetWindowTextA
DrawTextA
DrawFocusRect
DrawStateA
CopyRect
OffsetRect
GetDC
SystemParametersInfoA
GetDlgItem
GetClientRect
SetCursor
ReleaseDC
GetWindowRect
GetDlgCtrlID

gdi32

GetStockObject
MoveToEx
CreatePen
DeleteObject
SelectObject
DeleteDC
CreateCompatibleDC
BitBlt
CreateCompatibleBitmap
SetTextColor
SetBkColor
Rectangle
CreateSolidBrush
SetBkMode
LineTo
ExtTextOutA
GetObjectA
CreateBrushIndirect
StretchBlt
SetStretchBltMode

advapi32

RegFlushKey
RegSetValueExA
RegCreateKeyA
RegCloseKey

ole32

CoUninitialize
CoCreateInstance
CoInitialize

oleaut32

SysFreeString
SysAllocString
GetErrorInfo

comctl32

InitCommonControlsEx

Sections

.text
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

34ad55647549b939d20702bef62e8721

Headers

File Characteristics

Imports

shell32

kernel32

user32

gdi32

advapi32

ole32

oleaut32

comctl32

Sections

.text Size: 56KB - Virtual size: 53KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 18KB

.rsrc Size: 72KB - Virtual size: 71KB

.text
Size: 56KB - Virtual size: 53KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 18KB

.rsrc
Size: 72KB - Virtual size: 71KB