d9ba99540e03b0876947b973ca6e2fce_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d9ba99540e03b0876947b973ca6e2fce_JaffaCakes118
Size

539KB
MD5

d9ba99540e03b0876947b973ca6e2fce
SHA1

51dea1f996f82bbf2709bbfeb40f7dafb1363a55
SHA256

6e65dbc1a16cd2b9fd77df5e94b52005ff00ba78b0715eaf11819af976adbe13
SHA512

1d04991d9d06f4ef3cfb6242ea7da0c527d32b21db17cf95c165f45475a19a8a03531a36b0c242d8a2903758e4d425fabde20ce8071146411bc0ee3cdb27cca1
SSDEEP

12288:5KOCEw2EOacLj1qesAEKnvnFocwfMF2SlHtCD/:BnEOacnoRArnv6cwkISg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d9ba99540e03b0876947b973ca6e2fce_JaffaCakes118

Files

d9ba99540e03b0876947b973ca6e2fce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8f2f5745f8c598b122fb7900b6134def

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FlushFileBuffers
GetDiskFreeSpaceExW
CreateFileA
GetTickCount
OpenMutexA
GetLastError
SetEnvironmentVariableA
GetCPInfo
SetLastError
GetFileType
GetConsoleMode
VirtualFree
QueryPerformanceCounter
GetAtomNameW
LockFileEx
GetCurrentProcess
WriteFile
LoadLibraryA
CompareStringA
HeapFree
CreateMutexA
GetLocaleInfoW
GetProcAddress
FreeEnvironmentStringsW
SetConsoleCtrlHandler
GetDateFormatA
InitializeCriticalSection
GetEnvironmentStringsW
GetStdHandle
IsValidCodePage
GetModuleHandleA
InterlockedDecrement
FreeLibrary
GetCurrentThreadId
GetTimeFormatA
GetSystemTimeAsFileTime
GetLocaleInfoA
MultiByteToWideChar
WideCharToMultiByte
SetFilePointer
GetConsoleCP
SystemTimeToTzSpecificLocalTime
VirtualQuery
HeapDestroy
TlsSetValue
LCMapStringW
WriteConsoleW
GetTimeZoneInformation
GetStartupInfoA
GetEnvironmentStrings
TlsAlloc
ContinueDebugEvent
GetOEMCP
CloseHandle
HeapReAlloc
DeleteCriticalSection
GlobalGetAtomNameW
UnhandledExceptionFilter
GetStringTypeW
GetVersionExA
EnumSystemLocalesA
TerminateProcess
GetStringTypeA
ExitProcess
FreeEnvironmentStringsA
GetCurrentThread
GetACP
TlsFree
ReadFile
IsDebuggerPresent
GetCommandLineA
CompareStringW
GetUserDefaultLCID
IsValidLocale
SetHandleCount
WriteConsoleA
GetCurrentProcessId
Sleep
LoadLibraryW
GetProcessHeap
HeapSize
InterlockedExchange
HeapCreate
EnterCriticalSection
CreateFileW
GetConsoleOutputCP
LeaveCriticalSection
TlsGetValue
InterlockedIncrement
LCMapStringA
GetModuleFileNameA
HeapAlloc
SetUnhandledExceptionFilter
SetStdHandle
VirtualAlloc
GetDiskFreeSpaceW
RtlUnwind

user32

DrawTextExW
GetParent
EnumWindowStationsW
DdeReconnect
MapVirtualKeyA
CreateDialogParamW
DlgDirListA
DdeSetUserHandle
GetFocus
EnableMenuItem
RegisterClassExA
GetWindowLongA
UnloadKeyboardLayout
DdeImpersonateClient
SubtractRect
GetMenuItemCount
GetAltTabInfo
PeekMessageW
OpenIcon
RegisterClassA
UnregisterClassW
GetUserObjectSecurity
TabbedTextOutA
AppendMenuW
GetClassInfoExW
GetWindow
SetClassLongW

gdi32

AnimatePalette
CreateEnhMetaFileA
GetBoundsRect
BeginPath
CreateFontIndirectA
CreatePolygonRgn
SaveDC
Chord
GetTextCharset
ResizePalette
GetFontData
GetICMProfileA
ExtCreateRegion
SetGraphicsMode
GetWindowOrgEx
SetStretchBltMode
CreateDIBSection
UpdateICMRegKeyA
ArcTo
GetTextExtentPointW
SetArcDirection
SetColorSpace

comctl32

InitCommonControlsEx

Sections

.text
Size: 199KB - Virtual size: 199KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8f2f5745f8c598b122fb7900b6134def

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

Sections

.text Size: 199KB - Virtual size: 199KB

.rdata Size: 10KB - Virtual size: 32KB

.data Size: 315KB - Virtual size: 315KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 199KB - Virtual size: 199KB

.rdata
Size: 10KB - Virtual size: 32KB

.data
Size: 315KB - Virtual size: 315KB

.rsrc
Size: 13KB - Virtual size: 12KB