e9df6cc1b6740c4e15cccf23adeba620_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e9df6cc1b6740c4e15cccf23adeba620_JaffaCakes118
Size

435KB
MD5

e9df6cc1b6740c4e15cccf23adeba620
SHA1

f5aff3a551abc9f1202dc520b25e678705b0e80f
SHA256

5c9f0e00c939c152bc8b29305f241c1138ff61c51cbe3a0889ea5f60e6857780
SHA512

2fa15c82297e9f1e02960a6db96616aa33543d2ba6b5a2ea945adbf2c52606aaa7fe5dd8cd2b418a4d7d84d5f9f01af5a3756a376ac17b419f7e3972dc98dbdc
SSDEEP

12288:x4oUzLAfWydSHmkar3zBf22A2eYn7OFmjM5:VU3Afhimkap6YnnI5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e9df6cc1b6740c4e15cccf23adeba620_JaffaCakes118

Files

e9df6cc1b6740c4e15cccf23adeba620_JaffaCakes118
.exe windows:4 windows x86 arch:x86

80e628beb124baa316996ec99e038d8f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetStockObject
SelectObject
DeleteObject
CreateFontIndirectA
CreateSolidBrush
GetDeviceCaps
DeleteDC

kernel32

WriteConsoleA
UnmapViewOfFile
VirtualFree
FreeLibrary
SetEvent
FindClose
SetLastError
TlsFree
WriteConsoleW
TlsSetValue
HeapReAlloc
GetCPInfo
LockResource
GlobalFree
CloseHandle
SetUnhandledExceptionFilter
LocalFree
GetLocalTime
MultiByteToWideChar
lstrlenW
LCMapStringA
LCMapStringW
InterlockedCompareExchange
InterlockedIncrement
DeleteFileA
IsDebuggerPresent
SetEnvironmentVariableA
RemoveDirectoryA
CreateDirectoryA
Sleep
TerminateProcess
VirtualAlloc
TlsGetValue
GetStringTypeW
GlobalAlloc
HeapDestroy
GetConsoleMode
InterlockedExchange
ReleaseMutex
SetEndOfFile
DeleteCriticalSection
UnhandledExceptionFilter
GetEnvironmentStrings
LocalAlloc
GetSystemDirectoryA
GetACP
GetVersionExA
lstrcpyA
GetCommandLineA
ReadFile
RaiseException
HeapAlloc
HeapFree
MapViewOfFile
GetCurrentProcess
GetProcessHeap
GetStartupInfoA
WriteFile
CreateFileMappingA
GetFullPathNameA
GetFileSize
GetLastError
CreateMutexA
FreeEnvironmentStringsW
GetEnvironmentStringsW
LoadResource
GetModuleHandleW
GetConsoleCP
HeapCreate
GetCurrentThreadId
InterlockedDecrement
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
HeapSize
WaitForSingleObject
GetModuleFileNameA
CreateFileW
CreateThread
GetModuleFileNameW
VirtualQuery
CompareStringA
WideCharToMultiByte
GetLocaleInfoA
lstrcmpA
GetVersion
SetHandleCount
lstrlenA
SizeofResource
FindResourceA
GetModuleHandleA
FlushFileBuffers
CreateFileA
FindFirstFileA
TlsAlloc
GetFileAttributesA
GetCurrentProcessId
GetFileType
SetErrorMode
GetConsoleOutputCP
LoadLibraryA
GetCommandLineW
GetStringTypeA
SetFilePointer
FormatMessageA
GetStdHandle
GetOEMCP
ExitProcess
GetProcAddress
SetStdHandle
FreeEnvironmentStringsA
LeaveCriticalSection
QueryPerformanceCounter

user32

EnableMenuItem
InvalidateRect
ShowWindow
MessageBoxA
SystemParametersInfoA
IsWindowEnabled
EnableWindow
LoadCursorA
LoadIconA
GetClientRect
GetCursorPos
ReleaseDC
KillTimer
SetWindowLongA
GetWindowRect
SetTimer
SetForegroundWindow
GetParent
GetFocus
FillRect
GetDC
CreateWindowExA
EndDialog
IsWindowVisible
DestroyWindow
SetCursor
TranslateMessage

advapi32

RegOpenKeyExW
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA

ole32

CoTaskMemFree
CoUninitialize
CoTaskMemAlloc
CoInitialize

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 380KB - Virtual size: 379KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

80e628beb124baa316996ec99e038d8f

Headers

File Characteristics

Imports

gdi32

kernel32

user32

advapi32

ole32

Sections

.text Size: 36KB - Virtual size: 35KB

.rdata Size: 16KB - Virtual size: 16KB

.data Size: 380KB - Virtual size: 379KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 36KB - Virtual size: 35KB

.rdata
Size: 16KB - Virtual size: 16KB

.data
Size: 380KB - Virtual size: 379KB

.rsrc
Size: 2KB - Virtual size: 1KB