00beac3a306d38d275f8070432205d78_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

00beac3a306d38d275f8070432205d78_JaffaCakes118
Size

78KB
MD5

00beac3a306d38d275f8070432205d78
SHA1

56e4edafd11bea770036d5e9585e0e94a28d3dc1
SHA256

dc71a89b3607fffd299298b9f4ea4b21fcf3ace80e7cb5928e408586186cbc7d
SHA512

dd3134a92bcce32859e02cff7aa06d211629dfce98d72c975f26edfe29d7f87fffff19021859be36ad2a56a6f7270fbe785da34338117d877d3973ab982cf7ba
SSDEEP

768:RKWCIYB0HyNMc/Ek5E//5qhDBSwKA/HUQKTqH7rCbb2rC/vw2aIyQpwfznKvYi8v:JCV6LRCQrTW7rCbS+/Nacpw7OYi88Q3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00beac3a306d38d275f8070432205d78_JaffaCakes118

Files

00beac3a306d38d275f8070432205d78_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2ecc1bf0286a3dfe8b35d0b50f9a7c76

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetDesktopWindow
OffsetRect
MoveWindow
SetWindowTextA
CheckDlgButton
IsClipboardFormatAvailable
KillTimer
CheckRadioButton
EmptyClipboard
GetDC
SetClipboardData
CloseClipboard
GetDlgItemInt
SetDlgItemInt
GetDlgItemTextA
SetFocus
IsIconic
SetWindowLongA
SetTimer
GetSystemMenu
InvertRect
ReleaseDC
UpdateWindow
SendMessageA
SetCapture
GetWindowLongA
PostQuitMessage
CheckMenuItem
DialogBoxParamA
GetSubMenu
FlashWindow
ReleaseCapture
DefWindowProcA
WinHelpA
CreateWindowExA
DestroyWindow
GetSysColor
LoadStringA
SetClassLongA
ShowWindow
GetMessageA
LoadIconA
RegisterClassA
BeginPaint
TranslateMessage
DispatchMessageA
ScrollWindow
EndPaint
ValidateRect
SetScrollPos
GetWindowRect
SetScrollRange
SetWindowPos
SystemParametersInfoA
GetSystemMetrics
GetDlgItem
LoadCursorA
EndDialog
SendDlgItemMessageA
EnableMenuItem
SetCursor
GetMenu
ModifyMenuA
AppendMenuA
wsprintfA
GetAsyncKeyState
DrawMenuBar
PostMessageA
GetClipboardData
MessageBoxA
OpenClipboard
MessageBeep
GetKeyState
InvalidateRect

comdlg32

ChooseColorA
ChooseFontA
GetOpenFileNameA

wsock32

htons
WSACleanup
WSAStartup
ioctlsocket
gethostbyname
getservbyname
socket
bind
setsockopt
WSAAsyncSelect
send
WSAGetLastError
recv
closesocket
connect

advapi32

RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegCloseKey

kernel32

HeapFree
VirtualFree
HeapCreate
RtlUnwind
GetFileType
GetStdHandle
HeapDestroy
GetOEMCP
GetCPInfo
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
MultiByteToWideChar
FreeEnvironmentStringsA
FreeEnvironmentStringsW
UnhandledExceptionFilter
GetCurrentProcess
GetModuleFileNameA
ExitProcess
GetVersion
TerminateProcess
GetStartupInfoA
GetModuleHandleA
GetCommandLineA
CloseHandle
CreateFileA
GetACP
GetProcAddress
FreeLibrary
LoadLibraryA
LocalReAlloc
WriteFile
SetLastError
GetThreadLocale
lstrcpyA
OutputDebugStringA
lstrlenA
Sleep
lstrcmpiA
GlobalSize
LocalAlloc
lstrcatA
GlobalAlloc
GlobalLock
LocalFree
GetStringTypeW
HeapAlloc
VirtualAlloc
GetLastError
ReadFile
SetFilePointer
SetStdHandle
FlushFileBuffers
GetStringTypeA
GlobalUnlock
GlobalFree

gdi32

PatBlt
CreateFontIndirectA
CreateSolidBrush
DeleteObject
GetTextMetricsA
SelectObject
TextOutA
ExtTextOutA
SetBkColor
SetTextColor
TranslateCharsetInfo

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2ecc1bf0286a3dfe8b35d0b50f9a7c76

Headers

File Characteristics

Imports

user32

comdlg32

wsock32

advapi32

kernel32

gdi32

Sections

.text Size: 48KB - Virtual size: 47KB

.data Size: 11KB - Virtual size: 24KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 48KB - Virtual size: 47KB

.data
Size: 11KB - Virtual size: 24KB

.rsrc
Size: 9KB - Virtual size: 9KB