fad9d077e73b6a1f76bb6cc7567e5e37_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fad9d077e73b6a1f76bb6cc7567e5e37_JaffaCakes118
Size

668KB
MD5

fad9d077e73b6a1f76bb6cc7567e5e37
SHA1

432d3a4cc4f5c98c0fd27467cfe6e0e1f06df468
SHA256

de6afbdcc5fc3d4a30c080b9449927afb74b498dd552a06bfac3944c0265bb54
SHA512

28d5a19d55ad9083c3a20e297a69af83144ce4c180a879b775683b93ad10d2aff456735ce745570dc560147e7c5dcd08edb150dd4a5f2ae44e3d9557bd756770
SSDEEP

12288:UkltAJkctCDQ+NRolDX0YvefJZZqzWBWM0HNj/cXDCz646FQEcJE4UslrZeG:UAAXCDnRuX0YmfJmNj/cT0vUsPeG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fad9d077e73b6a1f76bb6cc7567e5e37_JaffaCakes118

Files

fad9d077e73b6a1f76bb6cc7567e5e37_JaffaCakes118
.exe windows:4 windows x86 arch:x86

071d8c877df2beeb2aea2e9098cf143d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

shlwapi

PathRelativePathToA
PathCompactPathA

kernel32

GlobalAlloc
WriteFile
GetStdHandle
ExitThread
CreateThread
SuspendThread
ResumeThread
GetCurrentProcess
GetModuleFileNameA
AttachConsole
FlushFileBuffers
GetVersionExA
GetCurrentDirectoryA
Sleep
GetStringTypeW
GetStringTypeA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
HeapReAlloc
HeapSize
GlobalLock
LoadLibraryA
LCMapStringW
LCMapStringA
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetConsoleMode
GetConsoleCP
WideCharToMultiByte
SetStdHandle
RtlUnwind
GetFileType
SetHandleCount
LeaveCriticalSection
EnterCriticalSection
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoA
GetProcessHeap
GlobalUnlock
GlobalFree
WaitForSingleObject
SetPriorityClass
GetLocaleInfoA
CreateFileA
CompareStringW
GetCommandLineA
CompareStringA
SetEndOfFile
GetTimeZoneInformation
InitializeCriticalSection
SetEnvironmentVariableA
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
CloseHandle
DeleteCriticalSection
GetLastError
DeleteFileA
MultiByteToWideChar
ReadFile
SetFilePointer
GetProcAddress
GetModuleHandleA
ExitProcess
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
GetDriveTypeA
GetFullPathNameA
RaiseException

user32

DeleteMenu
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
LoadIconA
LoadCursorA
RegisterClassExA
GetSysColorBrush
RegisterClassA
CreateWindowExA
LoadImageA
IsIconic
ReleaseDC
PostQuitMessage
IsWindowEnabled
DialogBoxParamA
SetDlgItemInt
SetForegroundWindow
MessageBeep
GetMenu
GetMenuItemInfoA
RemoveMenu
GetDC
InsertMenuItemA
PostMessageA
LoadStringA
LoadAcceleratorsA
GetSubMenu
EnableWindow
DrawMenuBar
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
CreateDialogParamA
MoveWindow
SetFocus
GetWindowLongA
CheckMenuItem
ShowWindow
EndDialog
GetWindowRect
DestroyWindow
GetDlgItemTextA
BeginPaint
GetClientRect
EndPaint
DefWindowProcA
SetDlgItemTextA
SendDlgItemMessageA
SendMessageA
InvalidateRect
MessageBoxA
SetWindowTextA
EnableMenuItem

gdi32

CreateCompatibleDC
GetObjectA
BitBlt
DeleteDC
CreatePen
CreateSolidBrush
SelectObject
Rectangle
DeleteObject
SetDIBitsToDevice

comdlg32

GetSaveFileNameA
GetOpenFileNameA

advapi32

RegSetValueExA
RegCloseKey
RegCreateKeyExA

shell32

DragQueryFileA
DragFinish
DragAcceptFiles
ShellExecuteA

Sections

.text
Size: 376KB - Virtual size: 376KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 14.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 224KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

071d8c877df2beeb2aea2e9098cf143d

Headers

File Characteristics

Imports

winmm

shlwapi

kernel32

user32

gdi32

comdlg32

advapi32

shell32

Sections

.text Size: 376KB - Virtual size: 376KB

.rdata Size: 44KB - Virtual size: 42KB

.data Size: 20KB - Virtual size: 14.7MB

.rsrc Size: 224KB - Virtual size: 224KB

.text
Size: 376KB - Virtual size: 376KB

.rdata
Size: 44KB - Virtual size: 42KB

.data
Size: 20KB - Virtual size: 14.7MB

.rsrc
Size: 224KB - Virtual size: 224KB