cfd4da2d964dd2af468ec2d457dc3431_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

cfd4da2d964dd2af468ec2d457dc3431_JaffaCakes118
Size

304KB
MD5

cfd4da2d964dd2af468ec2d457dc3431
SHA1

1313b9b973ec34fd494c39876a55a1d374622166
SHA256

7511196637b404ea0cf415ad53fd5e6a23f70f5727fcb8f1114696e1082cf2d6
SHA512

67ba93689778c442af19362b6b00b145a25d71567d7c01f0f9c10f6d7ddca2af20664c2ca9e5ec9898e2f2153f5cb834e0efd34fa529a924ff3e0b158fec670a
SSDEEP

6144:9OiR2ldFt1UXuHij3ZQA/BbVFoS89VbByb+I5Xqj5kwHAou:9JAd/1UfjJQSd/blE5Zu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cfd4da2d964dd2af468ec2d457dc3431_JaffaCakes118

Files

cfd4da2d964dd2af468ec2d457dc3431_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aa9e3f9a9096db776a86e9df670d06f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

shell32

ExtractAssociatedIconExA
ShellExecuteW

user32

SetMenuItemBitmaps
UnregisterClassW
RegisterClassA
CheckDlgButton
WaitForInputIdle
ShowWindow
DrawCaption
RemoveMenu
wsprintfA
CopyAcceleratorTableA
CreateWindowExW
RegisterClassExA
SystemParametersInfoA
DdeAddData
VkKeyScanExW
GetTabbedTextExtentA
ChangeClipboardChain
MessageBoxW
AppendMenuA
SetWindowPlacement
GetInputDesktop
WinHelpW
InSendMessage
GetTopWindow

comdlg32

ReplaceTextA
PrintDlgW
GetSaveFileNameA

kernel32

DeleteCriticalSection
TlsSetValue
GetStringTypeW
SetEnvironmentVariableA
QueryPerformanceCounter
WriteConsoleA
HeapFree
HeapDestroy
MultiByteToWideChar
TlsGetValue
SetFilePointer
HeapAlloc
ExitProcess
GetOEMCP
IsBadWritePtr
GetACP
EnterCriticalSection
LoadLibraryA
FreeEnvironmentStringsA
GetCurrentProcessId
OpenMutexA
TerminateProcess
lstrlenA
GetStringTypeA
GetSystemTimeAsFileTime
OpenMutexW
ReadFile
EnumSystemLocalesA
SetHandleCount
ReadConsoleOutputAttribute
VirtualFree
VirtualQuery
GetCurrentThread
IsValidLocale
HeapCreate
GetUserDefaultLCID
TlsAlloc
HeapSize
GetModuleHandleA
CompareStringW
LCMapStringW
GetEnvironmentStrings
DeleteFiber
FreeEnvironmentStringsW
GetStdHandle
GetTimeZoneInformation
GetModuleFileNameA
SetLastError
VirtualAlloc
CreateEventA
WideCharToMultiByte
GetEnvironmentStringsW
IsValidCodePage
GetVersionExA
CloseHandle
CreateMutexA
LCMapStringA
GetFileType
CompareStringA
HeapReAlloc
GetLocaleInfoW
TlsFree
GetProcAddress
InitializeCriticalSection
FlushFileBuffers
VirtualProtect
UnhandledExceptionFilter
GetCommandLineA
GetLocaleInfoA
GetStartupInfoA
SetStdHandle
RtlUnwind
GetSystemInfo
GetDateFormatA
GetCPInfo
GetCurrentThreadId
GetLastError
InterlockedExchange
GlobalGetAtomNameA
GetCurrentProcess
LeaveCriticalSection
WriteFile
GetTickCount
GetTimeFormatA

Sections

.text
Size: 179KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aa9e3f9a9096db776a86e9df670d06f0

Headers

File Characteristics

Imports

comctl32

shell32

user32

comdlg32

kernel32

Sections

.text Size: 179KB - Virtual size: 178KB

.rdata Size: 25KB - Virtual size: 35KB

.data Size: 88KB - Virtual size: 87KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 179KB - Virtual size: 178KB

.rdata
Size: 25KB - Virtual size: 35KB

.data
Size: 88KB - Virtual size: 87KB

.rsrc
Size: 11KB - Virtual size: 11KB