f6d6757ea188fb6995fc32d1de17902a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f6d6757ea188fb6995fc32d1de17902a_JaffaCakes118
Size

156KB
MD5

f6d6757ea188fb6995fc32d1de17902a
SHA1

656df2fa6fb0685c8c1615d51d2112f5052fc489
SHA256

1860d49a7a2e5943086033b3cf93408563f68aaa8ff1d6c22375d3e4e4463824
SHA512

6ce344446c7e513e33e95fcef49b6890706069512dffb0328e63bf2066969a25bed185672cc6ebf9d321cb52f53858b7fdbe63f9e92a31923a172a082a13ab97
SSDEEP

3072:D9CAHzyZ8j/sY9auxcQYLs78EbHzLErS4n/EBE/HsVv3f0jPfxtT:ZRzyijDauxcXL9EbH0lncksVUjP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f6d6757ea188fb6995fc32d1de17902a_JaffaCakes118

Files

f6d6757ea188fb6995fc32d1de17902a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

47d7005d8e0da66fe18be02a3f0cda3c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

comdlg32

GetSaveFileNameW

shell32

ShellExecuteW

kernel32

GetProcAddress
ExitProcess
GetVDMCurrentDirectories
ReadFile
CreateProcessW
CreateFileA
SetThreadPriorityBoost
GetLocalTime
FindClose
GetUserDefaultUILanguage
FindFirstFileW
MoveFileW
FreeLibrary
EnumResourceNamesW
MultiByteToWideChar
HeapAlloc
OutputDebugStringW
SetUnhandledExceptionFilter
WriteFile
WideCharToMultiByte
DeleteFileW
LoadLibraryW
GetCurrentProcessId
GetModuleHandleA
SetFilePointer
HeapFree

gdi32

SetBkMode
CreateDCW
SelectObject
CreatePen
LineTo
SetTextColor
DeleteObject
SetViewportOrgEx
CreateFontW
DeleteDC
CreateDIBSection
GetObjectW
GetCharWidthW
GetDeviceCaps
SetBkColor
SetViewportExtEx
CombineRgn
MoveToEx
BitBlt
StretchBlt
CreatePatternBrush
CreateSolidBrush
GetTextMetricsW
CreateCompatibleDC
ExtCreateRegion
CreateCompatibleBitmap
GetStockObject

user32

GetDlgItem
GetSysColor
MoveWindow
MessageBoxW
AdjustWindowRect
GetWindowInfo
GetWindowLongW
GetWindowRect
SetRect
EndDialog
SetWindowTextW
GetMenuStringW
SetWindowsHookExW
SendMessageW

msvfw32

ICInfo

advapi32

RegCreateKeyExW
RegSetValueExW
RegCloseKey
RegQueryInfoKeyW
RegQueryValueExW
RegOpenKeyExW
RegEnumKeyW
RegDeleteKeyA

comctl32

ImageList_ReplaceIcon
ImageList_Create
ImageList_Draw
ImageList_Destroy

Sections

.text
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

47d7005d8e0da66fe18be02a3f0cda3c

Headers

File Characteristics

Imports

comdlg32

shell32

kernel32

gdi32

user32

msvfw32

advapi32

comctl32

Sections

.text Size: 99KB - Virtual size: 99KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 52KB - Virtual size: 52KB

.imul Size: 1024B - Virtual size: 100KB

.text
Size: 99KB - Virtual size: 99KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 52KB - Virtual size: 52KB

.imul
Size: 1024B - Virtual size: 100KB