1205ec528118f708926945b65360921e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1205ec528118f708926945b65360921e_JaffaCakes118
Size

228KB
MD5

1205ec528118f708926945b65360921e
SHA1

50728e30fbc5692bafa59d2dd1bd0262e1d4c9e3
SHA256

a8a24e78dae3c33aebad758b43ca7533892850764e89c4982e9182de5ede041f
SHA512

cae525629e66c21d8d80e2bb1b197c983fc612ab1cdd615597f91bb199367b8fc329c80720358bcdf1771369ecd3fe0cc6ed6e45c99dd06cfcc4ad064bb276e3
SSDEEP

3072:pU1s6gr0Ja5WQujyTLLRlyTnlFxToY8mbElml7L31AAbCNzm4a//PeRMqNsH0:es6NBjyTRgTbCY8mbewP1ARC4aPeydU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1205ec528118f708926945b65360921e_JaffaCakes118

Files

1205ec528118f708926945b65360921e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0892a033318d339b3ff538e891c40e42

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsSetValue
GetCurrentThreadId
TlsAlloc
TlsFree
lstrlenA
lstrcatA
GetModuleFileNameA
GetModuleHandleA
lstrcpyA
GetCurrentProcess
GlobalAlloc
GlobalFree
FindClose
InterlockedExchange
CompareStringA
GetWindowsDirectoryA
GetSystemDirectoryA
LoadLibraryA
SetLastError
FlushFileBuffers
TlsGetValue
IsBadCodePtr
QueryPerformanceCounter
IsBadReadPtr
SetFilePointer
GetStringTypeA
LCMapStringA
GetOEMCP
SetUnhandledExceptionFilter
GetFileType
SetHandleCount
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
WriteFile
HeapSize
UnhandledExceptionFilter
TerminateProcess
CreateThread
SetStdHandle
GetCurrentProcessId
ReleaseMutex
InterlockedDecrement
InterlockedIncrement
Sleep
LocalFree
DeleteCriticalSection
LocalAlloc
EnterCriticalSection
MulDiv
LeaveCriticalSection
GetLocaleInfoA
InitializeCriticalSection
FreeLibrary
CloseHandle
GetThreadLocale
GetLastError
GetACP
WaitForSingleObject
GetTickCount
ExitProcess
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
RaiseException
RtlUnwind
GetVersionExA
GetCommandLineA
GetStartupInfoA
GetSystemTimeAsFileTime
HeapReAlloc
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
ExitThread
HeapAlloc
HeapFree

user32

PostQuitMessage
GetWindow
CopyRect
GetDlgCtrlID
SetWindowPos
GetDesktopWindow
EndDialog
GetDlgItem
ReleaseDC
OffsetRect
GetDC
SetFocus
GetParent
SetForegroundWindow
CharNextA
CallNextHookEx
UnhookWindowsHookEx
GetSystemMetrics
SetTimer
ExitWindowsEx
KillTimer
DestroyWindow
TranslateMessage
MsgWaitForMultipleObjects
GetWindowRect

gdi32

GetStockObject
GetDeviceCaps

advapi32

RegDeleteKeyA
AdjustTokenPrivileges
FreeSid
AllocateAndInitializeSid
LookupPrivilegeValueW
EqualSid
GetTokenInformation
OpenProcessToken
StartServiceW
OpenServiceW
OpenSCManagerW
CloseServiceHandle
RegCreateKeyExA
RegEnumKeyExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA
RegQueryValueExA

ole32

GetRunningObjectTable
CoUninitialize
CoInitialize
CoGetClassObject
CreateClassMoniker
CoTaskMemFree
CoCreateInstance
CoTaskMemAlloc
CoInitializeSecurity
CoDisconnectObject
CoRevokeClassObject
CoRegisterClassObject
StringFromCLSID

oleaut32

UnRegisterTypeLi
RegisterTypeLi
VariantCopy
SysFreeString
VariantClear
CreateStdDispatch
VariantInit
CreateDispTypeInfo
SysAllocString
LoadTypeLi

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.drdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0892a033318d339b3ff538e891c40e42

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

Sections

.text Size: 100KB - Virtual size: 99KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 8KB - Virtual size: 56KB

.rsrc Size: 28KB - Virtual size: 26KB

.drdata Size: 68KB - Virtual size: 68KB

.text
Size: 100KB - Virtual size: 99KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 8KB - Virtual size: 56KB

.rsrc
Size: 28KB - Virtual size: 26KB

.drdata
Size: 68KB - Virtual size: 68KB