d550979601422fe44125ab9553979694_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d550979601422fe44125ab9553979694_JaffaCakes118
Size

351KB
MD5

d550979601422fe44125ab9553979694
SHA1

4991895e4166f37131643e790027e9b99d0b6fc9
SHA256

47ac9eb6905b77e71fc4f4ffa3f8d247382eb6b4157809120323c4c387c94495
SHA512

9a0fd03013db91005695c991cd846e9559643a76c4a99bc6560fb47b0e8b755386e21c1d2731eeffa3c84e116007d07f4f9d568f4be69a96242577ee6293ce2a
SSDEEP

6144:p/jocCmZvpOOK7TGWtnJ30Jkj3cQS5yprZnWtn8MytouLcahpLYkK7h9refX0m:p/joRm1phK7SUJkqMQS5ir0tR8ouPLqQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d550979601422fe44125ab9553979694_JaffaCakes118

Files

d550979601422fe44125ab9553979694_JaffaCakes118
.exe windows:4 windows x86 arch:x86

37d7439e45e7a05b0fc3bd1867cde4f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateWindowStationA
DefMDIChildProcA
AnyPopup
RegisterClassA
RegisterClipboardFormatW
DlgDirListComboBoxW
GetMenuItemCount
GetMonitorInfoA
RegisterClassExA
CloseClipboard
RegisterClipboardFormatA
AppendMenuA
SetThreadDesktop

kernel32

LoadLibraryA
GetCommandLineA
VirtualFree
GetCPInfo
GetTimeZoneInformation
SetFilePointer
HeapCreate
ReadFile
TlsAlloc
FileTimeToDosDateTime
CreateFileMappingW
LocalAlloc
HeapDestroy
CompareFileTime
GetEnvironmentStringsW
GetLocalTime
FreeEnvironmentStringsW
GetSystemTime
QueryPerformanceCounter
CreateMutexA
CopyFileExA
HeapAlloc
SetEnvironmentVariableA
GetCurrentThreadId
HeapReAlloc
LCMapStringA
GetStringTypeA
SetHandleCount
GetLastError
FindResourceW
InterlockedExchange
VirtualAlloc
LoadModule
GetEnvironmentVariableA
FillConsoleOutputCharacterA
GetStdHandle
HeapFree
MultiByteToWideChar
RtlUnwind
FlushFileBuffers
EnterCriticalSection
GetVersion
PulseEvent
ExitProcess
WideCharToMultiByte
SetConsoleActiveScreenBuffer
FreeEnvironmentStringsA
TlsGetValue
CompareStringA
WriteFile
IsBadWritePtr
GetTempPathW
GetModuleFileNameW
GetEnvironmentStrings
GetCommandLineW
GetModuleHandleA
TerminateProcess
GetStringTypeW
GetProcAddress
GetSystemTimeAsFileTime
SetStdHandle
GetLogicalDriveStringsA
CloseHandle
GlobalFindAtomW
GetTickCount
TlsFree
LCMapStringW
InitializeCriticalSection
OpenFile
UnhandledExceptionFilter
DeleteCriticalSection
SetLastError
InterlockedDecrement
FindClose
OpenEventA
GetStartupInfoA
CompareStringW
CreateSemaphoreW
VirtualQuery
InterlockedIncrement
GetCurrentProcessId
GetFileType
GetStartupInfoW
TlsSetValue
GetCurrentProcess
OpenWaitableTimerA
WritePrivateProfileSectionW
OpenMutexA
LeaveCriticalSection
GetCurrentThread
GetModuleFileNameA

comctl32

InitCommonControlsEx

Sections

.text
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 204KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

37d7439e45e7a05b0fc3bd1867cde4f4

Headers

File Characteristics

Imports

user32

kernel32

comctl32

Sections

.text Size: 131KB - Virtual size: 130KB

.rdata Size: 4KB - Virtual size: 23KB

.data Size: 204KB - Virtual size: 204KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 131KB - Virtual size: 130KB

.rdata
Size: 4KB - Virtual size: 23KB

.data
Size: 204KB - Virtual size: 204KB

.rsrc
Size: 10KB - Virtual size: 10KB