cddaa7179541238b2b55ce629d374c13_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

cddaa7179541238b2b55ce629d374c13_JaffaCakes118
Size

112KB
MD5

cddaa7179541238b2b55ce629d374c13
SHA1

f4efc0e96736c2081a93917e5bff4d4bc2e6739c
SHA256

8aa8f46111e6a173c05717f8125adde2e0bc523ef3011be4d7b15eadcfd7aa55
SHA512

7b2de1677a4846d4599efe00ef76f91b97508beb9a0b8e5aa1964c578b526a5e96a1f219d2c5ed13f55d275dfc87e9e0f949bee65da6aa5bb6b98238ac8e6227
SSDEEP

1536:dIly2lGtgJmKIY1F4b13WP/4oxllB00pj5rs:dOy2ldQbZWPAoLM0pjts

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cddaa7179541238b2b55ce629d374c13_JaffaCakes118

Files

cddaa7179541238b2b55ce629d374c13_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6e017c6f81b5b99164273dacb54da3cb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
MulDiv
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
LoadLibraryA
GetProcAddress
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
VirtualAlloc
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
SetUnhandledExceptionFilter
WriteFile
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetWindowsDirectoryA
GetLogicalDrives
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
SetFilePointer
ReadFile
GetLastError
HeapSize
HeapReAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
HeapFree
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetCurrentProcess
TerminateProcess
ExitProcess
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RtlUnwind
SetErrorMode
GetFileAttributesA
GetDriveTypeA
CreateFileA
CloseHandle
DeviceIoControl
Beep
GetEnvironmentStrings
GetSystemDirectoryA
DeleteFileA
WinExec
Sleep
GetEnvironmentStringsW
GetVersion

user32

EndDialog
SetDlgItemTextA
DialogBoxParamA
BeginPaint
GetClientRect
FillRect
MoveWindow
DrawTextA
EndPaint
PostQuitMessage
SendMessageA
GetSystemMetrics
LoadCursorA
MessageBoxA
ShowWindow
UpdateWindow
SetWindowPos
wsprintfA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
SetActiveWindow
FindWindowA
DefWindowProcA
GetCursorPos
SetForegroundWindow
TrackPopupMenu
PostMessageA
GetMenuItemID
LoadMenuA
GetSubMenu
DestroyMenu
SetMenuDefaultItem
LoadStringA
KillTimer
LoadIconA
DestroyWindow
CreateWindowExA
RegisterClassExA
RegisterWindowMessageA

gdi32

CreateFontA
CreateSolidBrush
SetBkMode
SelectObject
SetTextColor
GetDeviceCaps

advapi32

RegOpenKeyA
RegSetValueExA
RegCreateKeyA
RegDeleteValueA
RegCloseKey

shell32

Shell_NotifyIconA

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nrdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6e017c6f81b5b99164273dacb54da3cb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 20KB - Virtual size: 28KB

.rsrc Size: 32KB - Virtual size: 31KB

.nrdata Size: 4KB - Virtual size: 4KB

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 20KB - Virtual size: 28KB

.rsrc
Size: 32KB - Virtual size: 31KB

.nrdata
Size: 4KB - Virtual size: 4KB