ef783132e7138a93a97dbe7a20b0aa45_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ef783132e7138a93a97dbe7a20b0aa45_JaffaCakes118
Size

684KB
MD5

ef783132e7138a93a97dbe7a20b0aa45
SHA1

0e4bc2ab573a2c8a5c825dfe11ab733903cf9682
SHA256

96f9e39c779d76a09a2545db29da350948792c534a0c21399d7a4d2160802649
SHA512

741ec846501ea199d9eb11c6eec69f5ce751c93ffbd7b9c6dee06b7064cb422368bff9a72bc5ef2874b61f030a12a2afb8bcd20022553547731433ab032b34c7
SSDEEP

12288:zMHElXnbLn6zl93D6+rlBc2MZTa6JQD4uPLMPQ5Ez7:zLP633DHGe6JQD4Po5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ef783132e7138a93a97dbe7a20b0aa45_JaffaCakes118

Files

ef783132e7138a93a97dbe7a20b0aa45_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1f65fadf55a4a77ec166cfba32b717fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetStockObject
CreateCompatibleDC
DeleteObject
DeleteDC
CreateSolidBrush

oleaut32

SysAllocString
VariantInit
SysFreeString
SysAllocStringLen
SysStringLen
VariantClear

kernel32

GetOEMCP
VirtualAlloc
FindResourceA
Sleep
VirtualFree
HeapCreate
IsValidCodePage
SizeofResource
InterlockedExchange
GetVersion
GetACP
lstrcpynA
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
RaiseException
GetCommandLineA
HeapSize
WideCharToMultiByte
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
lstrlenW
VirtualQuery
LCMapStringA
GetConsoleCP
GetSystemInfo
LCMapStringW
GetLastError
LeaveCriticalSection
ExitProcess
TlsSetValue
GetFileType
CreateEventA
CreateFileW
CreateEventW
RemoveDirectoryA
FindNextFileA
FindFirstFileA
CompareStringW
GetProcessHeap
GetProcAddress
GetModuleHandleW
GetFileSize
GetStartupInfoA
DeleteFileA
LoadLibraryA
GetVersionExA
GetTickCount
QueryPerformanceCounter
SetEvent
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
GetCurrentThreadId
SetEndOfFile
GlobalAlloc
TerminateProcess
GetSystemDirectoryA
SetUnhandledExceptionFilter
CreateMutexA
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
HeapAlloc
IsDebuggerPresent
VirtualProtect
GetModuleFileNameW
GetEnvironmentVariableA
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
FreeLibrary
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
GetStringTypeA
GetCPInfo
SetStdHandle
FreeEnvironmentStringsW
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetExitCodeProcess
GetFileAttributesW
HeapDestroy
GetDriveTypeA
WaitForSingleObject
FileTimeToSystemTime
GetConsoleOutputCP
GetStdHandle
GetEnvironmentStringsW
TlsAlloc
RtlUnwind
InterlockedDecrement

advapi32

RegDeleteKeyA
RegQueryValueExA
RegDeleteValueA

user32

SetCursor
CallWindowProcA
GetClientRect
SystemParametersInfoA
GetSysColor
MessageBoxA
SetForegroundWindow
GetDesktopWindow
LoadCursorA
GetDlgItem
GetWindowLongA
EndDialog
SetWindowLongA
PostMessageA
DefWindowProcA
BeginPaint
SetFocus
SetTimer
GetSubMenu
RegisterClassA
IsIconic
TranslateMessage
PeekMessageA
EnableWindow
SetCapture
ShowWindow
UpdateWindow
GetParent
DestroyWindow
SendMessageA
GetCursorPos
GetDC
EndPaint

Sections

.text
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 624KB - Virtual size: 622KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 456B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f65fadf55a4a77ec166cfba32b717fd

Headers

File Characteristics

Imports

gdi32

oleaut32

kernel32

advapi32

user32

Sections

.text Size: 24KB - Virtual size: 22KB

.rdata Size: 624KB - Virtual size: 622KB

.data Size: 28KB - Virtual size: 30KB

.rsrc Size: 4KB - Virtual size: 456B

.text
Size: 24KB - Virtual size: 22KB

.rdata
Size: 624KB - Virtual size: 622KB

.data
Size: 28KB - Virtual size: 30KB

.rsrc
Size: 4KB - Virtual size: 456B