ce129cee5be5d9b0f76598f8421704ef_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ce129cee5be5d9b0f76598f8421704ef_JaffaCakes118
Size

341KB
MD5

ce129cee5be5d9b0f76598f8421704ef
SHA1

cafa55c44306c7b34da136ae58e4a8ee5dec2bd0
SHA256

b1bb113dfb88b0d924755df1bf3c01ee53cb4e0f4d863adc6473a2bd67c301a3
SHA512

8e48d4d00913e21784a8a6eba3eb42163e148178f3cb4e611930b2adbe8c3220d8ea9550cc1176bb864e42ae2705080a1b6959f6a3a9cf9d74cc144d53ecf122
SSDEEP

6144:eob2C77P99/Aj78Ryyw8AalYFkQKssGuHZdiyuZscShDeDJzUOu9:evO9h7yyFqiQxfsBNeN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce129cee5be5d9b0f76598f8421704ef_JaffaCakes118

Files

ce129cee5be5d9b0f76598f8421704ef_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bb4bb99edf40c32a3fcbc7c546d8da34

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
GetStringTypeW
GetStringTypeA
LoadLibraryA
GetOEMCP
GetACP
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
CompareStringW
GetCPInfo
CloseHandle
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetFileAttributesA
IsBadWritePtr
VirtualAlloc
VirtualFree
SetEnvironmentVariableA
InterlockedExchange
RaiseException
FlushFileBuffers
WriteFile
CreateFileA
lstrcmpiA
SetFilePointer
ReadFile
HeapCreate
HeapDestroy
HeapSize
HeapReAlloc
GetCurrentProcess
TerminateProcess
GetLastError
GetFileType
lstrlenA
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
RtlUnwind
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetProcAddress
HeapFree
MultiByteToWideChar
LCMapStringA
LCMapStringW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
Sleep
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
SetStdHandle

user32

EnableWindow
CallWindowProcA
SetCursor
SetDlgItemInt
DialogBoxParamA
LoadIconA
SetClassLongA
LoadStringW
ShowWindow
SetWindowTextA
CheckDlgButton
CreateWindowExA
SetRect
InflateRect
DrawFrameControl
GetSysColor
DrawEdge
FillRect
LoadCursorA
EndPaint
IsDlgButtonChecked
BeginPaint
CheckRadioButton
GetCursorPos
ScreenToClient
GetDC
ReleaseDC
GetDlgItem
SendMessageA
wsprintfA
SetDlgItemTextA
GetWindowLongA
SetWindowLongA
GetWindowTextA
DrawTextA
EndDialog
GetDlgItemTextA
TrackMouseEvent
InvalidateRect

gdi32

GetStockObject
SelectObject
Polygon
GetCurrentObject
CreateHalftonePalette
GetPaletteEntries
GetSystemPaletteEntries
GetPixel
CreateFontA
SetTextColor
DeleteObject
CreateSolidBrush

comdlg32

GetOpenFileNameA
GetSaveFileNameA
ChooseColorA

shell32

ShellExecuteA

shlwapi

PathFindExtensionA

comctl32

ord17

Exports

Exports

jfdfytdtydtydytd

Sections

.text
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 239KB - Virtual size: 247KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bb4bb99edf40c32a3fcbc7c546d8da34

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

shlwapi

comctl32

Exports

Exports

Sections

.text Size: 81KB - Virtual size: 81KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 239KB - Virtual size: 247KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 81KB - Virtual size: 81KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 239KB - Virtual size: 247KB

.rsrc
Size: 9KB - Virtual size: 9KB