bfd7b77fb2a6e209d158ecbf0ba536cf_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

bfd7b77fb2a6e209d158ecbf0ba536cf_JaffaCakes118
Size

166KB
MD5

bfd7b77fb2a6e209d158ecbf0ba536cf
SHA1

b43d76c63cd9a783ed0802a9a217012af39d2256
SHA256

452a6e16a37204736385385bd0c52c565b822eced2dd93dd9f6dbf255db8516d
SHA512

5429af6ac06c174b0913809ac372291a2a1c8e47d1a546ca485af5a857392a8f76c9a57657d3d50ab61d8ce138bae87bf4f1e021d00f4b3af6f21729117bfe14
SSDEEP

3072:fsPY+jIAgv7AYdLvb0jbVfkwc7JE99EYGLwCihPRK:/3LDdvb/wc7U9LGLSPR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bfd7b77fb2a6e209d158ecbf0ba536cf_JaffaCakes118

Files

bfd7b77fb2a6e209d158ecbf0ba536cf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6b33e1f439b4f6338840e8e1963f5ffa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

ScaleViewportExtEx
DeleteDC
SetMapMode
SetBkColor
PtVisible
OffsetViewportOrgEx
SaveDC
ScaleWindowExtEx
ExtTextOutW
SetViewportOrgEx
RestoreDC
SetWindowExtEx
SelectObject
RectVisible
SetViewportExtEx
Escape
GetClipBox
GetDeviceCaps
DeleteObject
SetTextColor
CreateBitmap
TextOutW
GetStockObject

shell32

SHGetSpecialFolderPathW

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey

ole32

CoCreateInstance
CoUninitialize
CoInitialize

shlwapi

PathFindFileNameW
PathFileExistsW
PathAppendW
PathFindExtensionW

kernel32

HeapAlloc
VirtualFree
TerminateProcess
IsBadWritePtr
GetTickCount
GetShortPathNameA
FlushFileBuffers
HeapReAlloc
GetStringTypeA
GetCurrentProcessId
HeapFree
VirtualAlloc
SetFilePointer
GetProcessAffinityMask
SetUnhandledExceptionFilter
HeapSize
GetEnvironmentStringsW
IsBadReadPtr
GetSystemInfo
FreeEnvironmentStringsW
HeapDestroy
GetSystemTimeAsFileTime
EnumResourceTypesW
SetStdHandle
VirtualProtect
GetStdHandle
GetStartupInfoA
GetCommandLineA
GetEnvironmentStrings
GetOEMCP
IsBadCodePtr
GetModuleFileNameA
LCMapStringA
GetStringTypeW
QueryPerformanceCounter
GetFileType
SetHandleCount
GetFileAttributesA
GetCurrentProcess
VirtualQuery
LCMapStringW
UnhandledExceptionFilter
WriteFile
GetCPInfo
RtlUnwind
HeapCreate
ExitProcess

user32

ReleaseDC
IsWindowEnabled
GetWindowTextW
EnableMenuItem
GetLastActivePopup
EnableWindow
GetSysColor
LoadCursorW
GetWindowLongW
LoadBitmapW
GetMenuCheckMarkDimensions
GetParent
CheckMenuItem
MessageBoxW
GetDC
GetSystemMetrics
ModifyMenuW
GetSysColorBrush

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

Sections

.text
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6b33e1f439b4f6338840e8e1963f5ffa

Headers

File Characteristics

Imports

gdi32

shell32

advapi32

ole32

shlwapi

kernel32

user32

winspool.drv

Sections

.text Size: 99KB - Virtual size: 99KB

.rdata Size: 3KB - Virtual size: 2KB

.bss Size: 61KB - Virtual size: 61KB

.tls Size: 1024B - Virtual size: 104KB

.text
Size: 99KB - Virtual size: 99KB

.rdata
Size: 3KB - Virtual size: 2KB

.bss
Size: 61KB - Virtual size: 61KB

.tls
Size: 1024B - Virtual size: 104KB