fa959b76f73f5951b7ad1f0eb23ee287_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fa959b76f73f5951b7ad1f0eb23ee287_JaffaCakes118
Size

359KB
MD5

fa959b76f73f5951b7ad1f0eb23ee287
SHA1

ea95bcc3e3868706cd06cff1a32535c3a308c600
SHA256

fcd1f19f66313fca32cad8c96d10ff735a129a52914eed8d039be4ffa05273f9
SHA512

74c2815c9e59e03c3a0944c0f564d259bc418660a8ecf9ad1dea102a067bbfb2e1903194aa14f027e94f97abb8482061109e498f534ecc48a1cb502f046bdf90
SSDEEP

6144:eYSn9YgJHXTEpUtV0V0YuXYad7kOKdrM7JbfQtv3EYe8+PV46jn/jg:F7gNXTOK1d7kOKdKfQtv0nVbjbg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa959b76f73f5951b7ad1f0eb23ee287_JaffaCakes118

Files

fa959b76f73f5951b7ad1f0eb23ee287_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b76df1d788ec5991a1eadc27d97a0ce6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

free
malloc

user32

PeekMessageA
CharToOemBuffA
TranslateMessage
LoadBitmapA
wvsprintfA
ShowWindow
MessageBeep
GetDlgItem
GetKeyState
CreateDialogParamA
EndDialog
LoadCursorA
SetWindowTextA
MessageBoxA
SetDlgItemTextA
SetCursor
ShowCursor
LoadImageA
OemToCharBuffA
DialogBoxParamA
SetTimer
DestroyWindow
KillTimer
EnableWindow
LoadIconA
SendDlgItemMessageA
DispatchMessageA
GetWindowTextA
SetFocus
GetDlgItemTextA

gdi32

CreateFontA
DeleteObject

advapi32

RegCloseKey
RegQueryValueExA
RegCreateKeyA
RegOpenKeyExA
RegSetValueExA
RegEnumKeyExW
RegOpenCurrentUser
RegOpenKeyExW
RegDeleteKeyW
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW

kernel32

SetConsoleCursorPosition
QueryPerformanceCounter
SetEndOfFile
WaitForSingleObject
WriteConsoleOutputA
SetConsoleWindowInfo
SetFileAttributesA
SetStdHandle
FindNextFileA
ReadConsoleOutputAttribute
GetStdHandle
GetCurrentThread
Sleep
GetExitCodeProcess
FileTimeToDosDateTime
RemoveDirectoryA
FileTimeToSystemTime
LoadLibraryA
GetCurrentProcessId
WriteConsoleOutputCharacterA
LocalAlloc
VirtualFree
FindFirstFileA
FileTimeToLocalFileTime
LocalFree
GetLastError
AllocConsole
GetFileType
GlobalMemoryStatus
ReadConsoleInputA
SearchPathA
GetShortPathNameA
MoveFileA
DisableThreadLibraryCalls
GetVolumeInformationA
GetCurrentProcess
GetCurrentDirectoryA
GetFileTime
SetLastError
GetModuleFileNameA
GetEnvironmentVariableA
GetTimeZoneInformation
SetConsoleCtrlHandler
HeapReAlloc
FlushFileBuffers
HeapDestroy
GetCommandLineA
GetConsoleScreenBufferInfo
CloseHandle
GetFileAttributesA
HeapAlloc
GetModuleHandleA
ExitProcess
FreeConsole
GetDiskFreeSpaceA
CreateFileA
FillConsoleOutputCharacterA
DosDateTimeToFileTime
CreateDirectoryA
LocalFileTimeToFileTime
DeviceIoControl
SetCurrentDirectoryA
GetEnvironmentStringsA
GetCurrentThreadId
FillConsoleOutputAttribute
PeekConsoleInputA
SetFileTime
GetProcAddress
ReleaseSemaphore
GetTempPathA
HeapFree
GetFileInformationByHandle
GetDriveTypeA
SetEnvironmentVariableA
GetFullPathNameA
ReadFile
GetStartupInfoA
GetSystemTime
HeapCreate
DeleteFileA
HeapSize
SystemTimeToFileTime
ReadConsoleOutputA
lstrlenW
FindClose
GetVersion
GetSystemTimeAsFileTime
CreateProcessA
SetHandleCount
GetConsoleCursorInfo
SetConsoleScreenBufferSize
ScrollConsoleScreenBufferA
SetFilePointer
LCMapStringA
WriteFile
SetConsoleCursorInfo
GetLocalTime

shell32

ShellExecuteExA
ShellExecuteA

ntdll

DbgPrint

Sections

.text
Size: 77KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 151KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 512B - Virtual size: 54B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b76df1d788ec5991a1eadc27d97a0ce6

Headers

File Characteristics

Imports

msvcrt

user32

gdi32

advapi32

kernel32

shell32

ntdll

Sections

.text Size: 77KB - Virtual size: 80KB

.data Size: 151KB - Virtual size: 150KB

.rdata Size: 112KB - Virtual size: 112KB

.bss Size: - Virtual size: 12KB

.idata Size: 4KB - Virtual size: 4KB

.crt Size: 512B - Virtual size: 54B

.tls Size: 512B - Virtual size: 32B

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 77KB - Virtual size: 80KB

.data
Size: 151KB - Virtual size: 150KB

.rdata
Size: 112KB - Virtual size: 112KB

.bss
Size: - Virtual size: 12KB

.idata
Size: 4KB - Virtual size: 4KB

.crt
Size: 512B - Virtual size: 54B

.tls
Size: 512B - Virtual size: 32B

.rsrc
Size: 12KB - Virtual size: 11KB