03c84c2ee73e5729ed8b707c964de7ca_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

03c84c2ee73e5729ed8b707c964de7ca_JaffaCakes118
Size

375KB
MD5

03c84c2ee73e5729ed8b707c964de7ca
SHA1

023e4b2198d7393dcfbe3fa8945fcfd642913672
SHA256

8a8c60bcddf58a80c20d457077d63ca1be9e68c2bbe103c785153c3848e34699
SHA512

2e996ed252f267a91c6212ed948933ff9e184ff7da90ad5c8612636a0a94830ca52976b7eedd4672b505a4e214ad7e55e63b2cd40401cb7035b527ac1e9edd91
SSDEEP

6144:xzers8tg+bi/Go8eg3+tAYbJMO81yIs3L/dvW/omRMzEr+jiQlLTPkoANSOkmu4:u13u/G85bmO88b/1WrMri0LTJAwXc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03c84c2ee73e5729ed8b707c964de7ca_JaffaCakes118

Files

03c84c2ee73e5729ed8b707c964de7ca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dc2bd4e6b354658b4e30adc71e2d73f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetBkColor
CreateCompatibleDC
CreateCompatibleBitmap

kernel32

GetCurrentThreadId
GetACP
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
GetCommandLineA
HeapSize
GetCPInfo
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
lstrlenW
GetEnvironmentStringsW
GetConsoleCP
GlobalFree
lstrlenA
HeapCreate
LCMapStringW
GetLastError
LeaveCriticalSection
HeapAlloc
TlsSetValue
GetFileType
CreateFileW
GetTimeZoneInformation
FindNextFileA
CompareStringA
FindNextFileW
CompareStringW
GetProcessHeap
GetProcAddress
SetEvent
GetStartupInfoW
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
GetTickCount
QueryPerformanceCounter
GetOEMCP
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
SetCurrentDirectoryA
InterlockedIncrement
UnmapViewOfFile
SetEndOfFile
GetConsoleMode
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
CreateMutexA
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
ExitProcess
IsDebuggerPresent
GetModuleFileNameW
TlsGetValue
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
InitializeCriticalSection
LocalFree
FreeLibrary
GetStringTypeW
SizeofResource
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
WideCharToMultiByte
SetStdHandle
GetLocaleInfoW
FreeEnvironmentStringsW
SetErrorMode
CreateFileA
LocalAlloc
GetLocaleInfoA
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
WaitForSingleObject
GetFileAttributesA
GetConsoleOutputCP
GetStdHandle
GetUserDefaultLCID
GetUserDefaultLangID
GetSystemDefaultLangID
GetSystemDefaultLCID
GetModuleHandleW
VirtualAlloc
FindResourceW
VirtualFree
Sleep
GetVersion

user32

EnableMenuItem
GetSysColor
MessageBoxA
EndDialog
SetForegroundWindow
GetDesktopWindow
LoadIconA
LoadCursorA
ScreenToClient
GetDlgItem
SetWindowTextA
GetWindowRect
GetSystemMetrics
BeginPaint
SetFocus
EndPaint
SetTimer
GetWindowLongA
IsIconic
LoadStringA
TranslateMessage
PeekMessageA
EnableWindow
ShowWindow
UpdateWindow
GetParent
DestroyWindow
GetClientRect
GetDC
DispatchMessageA
SetWindowPos
LoadBitmapA
ReleaseDC
PostQuitMessage
DestroyMenu
InvalidateRect
SendMessageA
CallWindowProcA
SetCursor

advapi32

RegOpenKeyExW
RegCreateKeyExW
RegQueryValueExW

ole32

CoInitialize
CoTaskMemFree
CoCreateInstance
CoUninitialize
CoTaskMemAlloc

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 311KB - Virtual size: 310KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dc2bd4e6b354658b4e30adc71e2d73f0

Headers

File Characteristics

Imports

gdi32

kernel32

user32

advapi32

ole32

Sections

.text Size: 40KB - Virtual size: 40KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 311KB - Virtual size: 310KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 40KB - Virtual size: 40KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 311KB - Virtual size: 310KB

.rsrc
Size: 6KB - Virtual size: 6KB