f652b7a2bfb5031bd7d3837c8b8d2d5d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f652b7a2bfb5031bd7d3837c8b8d2d5d_JaffaCakes118
Size

510KB
MD5

f652b7a2bfb5031bd7d3837c8b8d2d5d
SHA1

6237f444abcb4dc9b7bb62483301e9f41bbc92c5
SHA256

251667714bb6c782b50a07a3e3688bccfedccb296d494546e8adec5492e3c0a0
SHA512

ecbf631ba1b4e281e1baf8bb926fb7f54b01d41e3ebd7d4b2f1afc715954fa3c02992f05724340dc3076474f2c086b59cb2deab9ab1c618a8da84f99fa4e4a47
SSDEEP

6144:Y9RckVm/Xo7pgKuLi/mKO4qa/PYmxUTttBZfpnmxoKxdHqMeSYvLxN7BrO0uTCF:2TK3/+/mG/XGX/fIzdKDj/SEByC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f652b7a2bfb5031bd7d3837c8b8d2d5d_JaffaCakes118

Files

f652b7a2bfb5031bd7d3837c8b8d2d5d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

68d5269213f9801e56edeb14d30903ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectObject
GetDeviceCaps
CreateCompatibleBitmap

oleaut32

SysAllocString
SysFreeString
SysAllocStringLen
SysStringLen

kernel32

VirtualAlloc
Sleep
CreateProcessW
WriteFile
HeapCreate
SizeofResource
SetStdHandle
GetCurrentThreadId
GetACP
lstrcpynA
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
WideCharToMultiByte
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
FileTimeToLocalFileTime
VirtualFree
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
HeapReAlloc
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
LCMapStringW
GetLastError
LeaveCriticalSection
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetProcAddress
DuplicateHandle
FindNextFileA
CompareStringA
InterlockedIncrement
lstrcpyA
FindFirstFileA
lstrcmpA
GetProcessHeap
GetSystemInfo
GlobalLock
SetEvent
SetErrorMode
GetModuleHandleW
CreateDirectoryA
GetFileSize
GetStartupInfoA
DeleteFileA
LoadLibraryA
FlushFileBuffers
TlsAlloc
GetTickCount
QueryPerformanceCounter
GetOEMCP
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
SetEndOfFile
GetConsoleMode
GlobalAlloc
GetVersion
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
MulDiv
SetUnhandledExceptionFilter
SetFileAttributesA
CreateThread
SetFilePointer
MultiByteToWideChar
TlsGetValue
UnhandledExceptionFilter
GetPrivateProfileStringA
GetModuleFileNameA
GetVersionExA
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
GetEnvironmentVariableA
SetLastError
OutputDebugStringA
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
GetExitCodeProcess
FormatMessageW
LocalFree
FreeLibrary
GetFullPathNameA
GetStringTypeW
GetDiskFreeSpaceA
GetSystemTimeAsFileTime
InterlockedExchange
GetStringTypeA
GetCPInfo
GetLocaleInfoW
FreeEnvironmentStringsW
LoadLibraryExW
ExpandEnvironmentStringsA
LocalAlloc
GetLocaleInfoA
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetLocalTime
GetFileAttributesW
HeapDestroy
FindFirstFileW
WaitForSingleObject
GetFileAttributesA
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
RtlUnwind

user32

SetCursor
CallWindowProcA
SendMessageA
InvalidateRect
SystemParametersInfoA
GetSysColor
MessageBoxA
EndDialog
GetFocus
GetDesktopWindow
LoadCursorA
ScreenToClient
GetDlgItem
CheckMenuItem
ReleaseCapture
GetWindowRect
GetSystemMetrics
DefWindowProcA
SetTimer
BeginPaint
PeekMessageA
SetFocus
DestroyWindow
EndPaint
CreateWindowExA
GetWindowLongA
RegisterClassA
LoadStringA
GetWindow
TranslateMessage
EnableWindow
ShowWindow
UpdateWindow
GetParent
GetMessageA
PtInRect
GetClientRect
ReleaseDC
GetDC
DispatchMessageA
IsWindow
PostQuitMessage
DestroyMenu
SetForegroundWindow

ole32

CoUninitialize
CoTaskMemFree

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 483KB - Virtual size: 482KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

68d5269213f9801e56edeb14d30903ea

Headers

File Characteristics

Imports

gdi32

oleaut32

kernel32

user32

ole32

Sections

.text Size: 22KB - Virtual size: 21KB

.data Size: 483KB - Virtual size: 482KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 22KB - Virtual size: 21KB

.data
Size: 483KB - Virtual size: 482KB

.rsrc
Size: 4KB - Virtual size: 4KB