d9e2e7ae19c611e39356d20e4ac25514_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d9e2e7ae19c611e39356d20e4ac25514_JaffaCakes118
Size

324KB
MD5

d9e2e7ae19c611e39356d20e4ac25514
SHA1

e708d5990a02f2d7c888043216fc67279a3ba893
SHA256

7c7fe4167270c9cad935c817088517297c39303f870cb6295dbc25703d919da5
SHA512

ead39795c647943b2547b748a8807e601ce6bee7d223714a55af20a3ebeb6edd20051ec8d9a354efdb3d55c0bcfc637c96832d19be3532ed1824d0a7df21c999
SSDEEP

6144:f2hC/5YcBSx7rzXuCQ/320fHVzA4Trh2MzlA3iTr1RvJ8YHQSD7z:OhC2ka7Pu7f2qdA4Trhfd8YHQOn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d9e2e7ae19c611e39356d20e4ac25514_JaffaCakes118

Files

d9e2e7ae19c611e39356d20e4ac25514_JaffaCakes118
.exe windows:4 windows x86 arch:x86

89b27165127a88fddbc020ffa06c948e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoUninitialize
CoCreateInstance
CoTaskMemFree
CoInitialize

gdi32

SetBkMode
SelectObject
SetTextColor
GetStockObject
GetDeviceCaps
SetBkColor

kernel32

VirtualAlloc
Sleep
VirtualFree
UnmapViewOfFile
CreateProcessA
GetEnvironmentStrings
SetStdHandle
GetModuleHandleW
GetACP
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
InterlockedCompareExchange
GetCommandLineA
WideCharToMultiByte
GetCommandLineW
LockResource
GetCurrentProcessId
SizeofResource
GlobalUnlock
GetThreadLocale
LCMapStringA
FindResourceW
GetConsoleCP
lstrlenA
LCMapStringW
GetLastError
InterlockedIncrement
HeapAlloc
TlsSetValue
GetFileType
CreateEventA
CreateFileW
CreateEventW
GetProcAddress
WaitForMultipleObjects
DuplicateHandle
FindFirstFileW
CreateFileMappingA
lstrcpyA
FindFirstFileA
CompareStringW
GetSystemInfo
GlobalLock
DeleteFileW
SetErrorMode
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
TlsAlloc
QueryPerformanceCounter
FreeLibrary
LoadLibraryW
SetHandleCount
EnterCriticalSection
SetCurrentDirectoryA
LeaveCriticalSection
GetCurrentThreadId
SetEndOfFile
GetConsoleMode
VirtualQuery
GetVersion
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
MultiByteToWideChar
TlsGetValue
UnhandledExceptionFilter
GetVersionExA
ExitProcess
IsDebuggerPresent
GetModuleFileNameW
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
LocalFree
SetEvent
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
GetCPInfo
GetTempPathA
FreeEnvironmentStringsW
CreateFileA
LocalAlloc
GetLocaleInfoA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetLocalTime
GetFileAttributesW
HeapDestroy
WaitForSingleObject
GetFileAttributesA
ReleaseMutex
GetStdHandle
GetCurrentThread
GetTickCount
GetModuleFileNameA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegSetValueExW
RegCloseKey

user32

PeekMessageA
DispatchMessageA
PostQuitMessage
GetDC
SetCursor
CallWindowProcA
GetClientRect
wsprintfA
IsWindowVisible
MessageBoxA
SetDlgItemTextA
EndDialog
SetForegroundWindow
GetDesktopWindow
SendMessageA
TrackPopupMenu
LoadIconA
LoadCursorA
ScreenToClient
GetDlgItem
SetWindowTextA
SetWindowLongA
PostMessageA
GetWindowRect
GetSystemMetrics
BeginPaint
MapWindowPoints
CreateWindowExA
GetWindowLongA
EnableMenuItem
LoadStringA
TranslateMessage
SetWindowPos
EnableWindow
SetCapture
ShowWindow
DestroyWindow
ReleaseDC
GetCursorPos

Sections

.text
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 288KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

89b27165127a88fddbc020ffa06c948e

Headers

File Characteristics

Imports

ole32

gdi32

kernel32

advapi32

user32

Sections

.text Size: 12KB - Virtual size: 8KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 288KB - Virtual size: 284KB

.rsrc Size: 4KB - Virtual size: 864B

.text
Size: 12KB - Virtual size: 8KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 288KB - Virtual size: 284KB

.rsrc
Size: 4KB - Virtual size: 864B