fcfde447285365c3998662e1d6b00054_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fcfde447285365c3998662e1d6b00054_JaffaCakes118
Size

116KB
MD5

fcfde447285365c3998662e1d6b00054
SHA1

db23afcfcb2ce66976dc6ba6dfc8a4e0cfb373ce
SHA256

7604f1906e8a2336f10d7e89c05f7d43d7c0846ed851546520ac2f99a3a1cd8f
SHA512

f939f8e2754c921f475703d73dbed91063c513ee6bdececd42b2284d3bc9a7170c3014fc0b9658ebe4cf68bf6845b47d36dd65ad345b70e667715b8683f26cca
SSDEEP

3072:D27PknZXNsnXPAMxAlUGco2YQuEErYy5qsF1GlR0qWkM7pN:XNs4I2UBo2IEEcy5F00qWz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fcfde447285365c3998662e1d6b00054_JaffaCakes118

Files

fcfde447285365c3998662e1d6b00054_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6faf4c269331643e147d4d7c1ea77e56

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

OpenClipboard
GetClassLongA
UnhookWindowsHookEx
WaitMessage
IsWindowUnicode
InvalidateRect
AdjustWindowRectEx
CreatePopupMenu
SetClipboardData
IsCharLowerA
CallWindowProcA
IsCharUpperA
SetPropA
GetCursor
ChildWindowFromPoint
EndPaint
GetScrollPos
CreateMenu
PtInRect
GetClassInfoA
CreateWindowExA
BeginPaint
GetWindowTextA
CharLowerA
SetCapture
GetSubMenu
MoveWindow
TranslateMessage
GetKeyboardState
MapWindowPoints
IsChild
GetKeyState
GetWindowLongA
IsWindowEnabled
DestroyMenu
RegisterClassA
GetDCEx
ShowWindow
InsertMenuItemA
FillRect
DispatchMessageA
KillTimer
IsZoomed
GetDesktopWindow
GetKeyboardLayoutList
CharUpperA
GetFocus
SendMessageW
SetParent
SystemParametersInfoA
GetWindowRect
GetCursorPos
RedrawWindow
GetCapture
GetKeyNameTextA
GetKeyboardType
InsertMenuA
GetMenuItemCount
GetMenu
DefFrameProcA
GetWindowPlacement
GetLastActivePopup

kernel32

GetCommandLineA
GetCommandLineW
FindResourceA
ResetEvent
SetErrorMode
GetDiskFreeSpaceA
FreeResource
GetACP
GetFileType
SizeofResource
GetSystemDefaultLangID
lstrlenW
SetFilePointer
FormatMessageA
GetCurrentThreadId
GetThreadLocale
GetModuleHandleW
HeapDestroy
lstrcmpA
lstrcatA
HeapFree
FindClose
ReadFile
lstrcmpiA
HeapAlloc
DeleteFileA
WriteFile
GetFileSize
Sleep
lstrlenA
CreateEventA
InitializeCriticalSection
GetCurrentProcess
CompareStringA
GetStdHandle
CreateThread
LoadResource
MulDiv
SetEndOfFile
VirtualAlloc
GetProcessHeap
CloseHandle
MoveFileA
IsBadReadPtr
GlobalAlloc
GetLastError
FreeLibrary
GetStringTypeA
lstrcpynA
LoadLibraryA
DeleteCriticalSection
LocalFree
ExitProcess
SetThreadLocale
GetFullPathNameA
GetUserDefaultLCID
WideCharToMultiByte
GetVersionExA
RaiseException
EnumCalendarInfoA
GetFileAttributesA
VirtualAllocEx
SetHandleCount

gdi32

GetBitmapBits
CreatePalette
GetTextColor

version

GetFileVersionInfoA
GetFileVersionInfoSizeA

Exports

Exports

_5ipWGL1PLfXwy@12

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 242KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6faf4c269331643e147d4d7c1ea77e56

Headers

File Characteristics

Imports

user32

kernel32

gdi32

version

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 9KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 99KB - Virtual size: 242KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 99KB - Virtual size: 242KB

.rsrc
Size: 2KB - Virtual size: 1KB