fe59788233aac48c4ce4f5dffa42f44d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fe59788233aac48c4ce4f5dffa42f44d_JaffaCakes118
Size

380KB
MD5

fe59788233aac48c4ce4f5dffa42f44d
SHA1

f08865e58d5fe2ce39cc124ef189ae9a1b982478
SHA256

cb622e251462262cabb3db6bd83ed6722ab5fcd58ae5a8a537afb37244383e0c
SHA512

d222b84db8848a308fd3ed17db7869e9318fd298551ef7ea3a8b9a85c215b1437df4e8e19e49631ec79b184e2feee50161efa350c5de4a5e3b199b828aafeef5
SSDEEP

6144:+PfyzmBj12PEbk25Zpc78wuNpQn+yxabH12l0ZwxGP0MVgM:WfjR12Ik2pc78PpQnJxabqCnPSM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe59788233aac48c4ce4f5dffa42f44d_JaffaCakes118

Files

fe59788233aac48c4ce4f5dffa42f44d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3f090256de02dd4c77b6185927ea6aca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExA
RegQueryValueExA
RegCloseKey

gdi32

CreateCompatibleBitmap
CreateSolidBrush
SelectObject
CreateCompatibleDC
DeleteDC
DeleteObject
SetBkColor

kernel32

VirtualAlloc
IsBadReadPtr
Sleep
CreateProcessW
HeapCreate
SizeofResource
GetModuleHandleW
GetACP
lstrcpynA
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
WideCharToMultiByte
GetCommandLineW
GetCurrentProcessId
GetEnvironmentStrings
FileTimeToLocalFileTime
VirtualFree
lstrlenW
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
GetLastError
InterlockedIncrement
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateFileW
GetTimeZoneInformation
GetProcAddress
DuplicateHandle
FindNextFileA
CompareStringA
FindNextFileW
lstrcmpA
CompareStringW
GetProcessHeap
WaitForMultipleObjects
DeleteFileW
SetEvent
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
FreeLibrary
LoadLibraryA
FlushFileBuffers
TlsAlloc
GetTickCount
QueryPerformanceCounter
GetOEMCP
LoadLibraryW
SetHandleCount
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
SetEndOfFile
GetConsoleMode
VirtualQuery
GetVersion
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
MulDiv
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
CreateMutexA
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
GetVersionExA
ExitProcess
IsDebuggerPresent
VirtualProtect
SetLastError
FormatMessageA
TlsGetValue
FindClose
GlobalLock
InitializeCriticalSection
LocalFree
GetExitCodeProcess
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
lstrcmpiA
GetCPInfo
GetTempPathA
SetStdHandle
GetLocaleInfoW
LocalAlloc
GetLocaleInfoA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapFree
HeapDestroy
FindFirstFileW
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentVariableA
RtlUnwind
LCMapStringW

user32

SetCursor
CallWindowProcA
GetClientRect
wsprintfA
InvalidateRect
IsWindowVisible
MessageBoxA
MoveWindow
SendMessageA
TrackPopupMenu
LoadIconA
LoadCursorA
ScreenToClient
GetDlgItem
EndDialog
SetWindowLongA
ReleaseCapture
GetWindowRect
GetSystemMetrics
DefWindowProcA
KillTimer
SetFocus
CreateWindowExA
GetWindowLongA
RegisterClassA
EnableMenuItem
GetWindow
TranslateMessage
EnableWindow
ShowWindow
UpdateWindow
GetParent
GetMessageA
DestroyWindow
GetDC
PeekMessageA
DispatchMessageA
SetWindowPos
PostQuitMessage
SetForegroundWindow

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 332KB - Virtual size: 331KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f090256de02dd4c77b6185927ea6aca

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

user32

Sections

.text Size: 28KB - Virtual size: 25KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 332KB - Virtual size: 331KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 28KB - Virtual size: 25KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 332KB - Virtual size: 331KB

.rsrc
Size: 4KB - Virtual size: 1KB