14728e4d124de421b6acf590352228da_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

14728e4d124de421b6acf590352228da_JaffaCakes118
Size

332KB
MD5

14728e4d124de421b6acf590352228da
SHA1

8cd8b90d61fcbb55d356ccba4d95194e98f7d40e
SHA256

e03d2da99a1a9298f33ec3d61abdd59f2c1317c66380d38f5e2112977484bfab
SHA512

7aabfd550881c20aa713b1a5905af7689d728a134e061370fcc6de50dd04127ca4f30ace47509b5ed6f4d033fb15f22a7dd21b134f3bf7991ef64dc31848d746
SSDEEP

6144:N+2IFT3t9FZl76BHVgeompdMbdQg3sol6gMz5sthcuzaCq6NdKXm2e4of:N+V9FZl7urp2QO1lWsbfXZ8dY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14728e4d124de421b6acf590352228da_JaffaCakes118

Files

14728e4d124de421b6acf590352228da_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2b145032bd258923f0cb152b9a877c83

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

StartDocA
GetDCOrgEx
CopyMetaFileA
EnumFontFamiliesA
GetNearestColor
SelectPalette
FillPath
CreateEnhMetaFileW

advapi32

RegDeleteKeyA
SetPrivateObjectSecurity
ReportEventW
RegLoadKeyA
RegLoadKeyW
CryptSignHashW
GetNamedSecurityInfoA
GetSecurityDescriptorOwner
InitializeSid
LookupAccountNameA
RegEnumKeyExW
RevertToSelf
CryptSetHashParam
GetServiceDisplayNameW
CryptCreateHash
CryptSetKeyParam
LookupPrivilegeNameA
CryptGetUserKey

kernel32

SetConsoleTextAttribute
OpenFileMappingA
FileTimeToLocalFileTime
WaitForMultipleObjectsEx
TlsFree
DeleteFileA
SetLocalTime
GetVersion
GetPrivateProfileStringA
DeleteAtom
ExpandEnvironmentStringsW
DeviceIoControl
GetDateFormatW
UpdateResourceA
DefineDosDeviceA
IsValidCodePage
MapViewOfFile
CreateMailslotW
GetCommProperties
WriteConsoleOutputCharacterA
DosDateTimeToFileTime
CreateEventW
GlobalDeleteAtom
GetFileSize
LocalFileTimeToFileTime
LocalLock
LoadLibraryExW
CreateFileA
DeleteFiber
SizeofResource
GetACP
OpenMutexW
CreateProcessA
GetSystemInfo
IsDBCSLeadByteEx
SetConsoleCtrlHandler
CreateWaitableTimerA
AddAtomA
WaitNamedPipeA
CreateDirectoryExW
FillConsoleOutputAttribute
GetProfileIntW
SetProcessShutdownParameters
GetCompressedFileSizeW
WaitForMultipleObjects
CallNamedPipeA
GetStringTypeExW

user32

GrayStringA
ActivateKeyboardLayout
RegisterClassW
LoadAcceleratorsW
MessageBoxW
MapWindowPoints
GetCursor
CopyIcon
GetNextDlgGroupItem
ScrollDC
SetWindowLongA
EnableMenuItem
LoadIconW
IsCharAlphaW
AdjustWindowRectEx
ShowWindow
GetTabbedTextExtentA
RegisterDeviceNotificationW
LoadKeyboardLayoutA
GetDlgItemInt
GetDlgCtrlID
InflateRect
CharToOemBuffA
LoadBitmapW
LookupIconIdFromDirectory
UnloadKeyboardLayout
DrawEdge
SendInput
LoadMenuIndirectA

Sections

.text
Size: 36KB - Virtual size: 354KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 285KB - Virtual size: 285KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b145032bd258923f0cb152b9a877c83

Headers

File Characteristics

Imports

gdi32

advapi32

kernel32

user32

Sections

.text Size: 36KB - Virtual size: 354KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 285KB - Virtual size: 285KB

.rsrc Size: 22KB - Virtual size: 21KB

.text
Size: 36KB - Virtual size: 354KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 285KB - Virtual size: 285KB

.rsrc
Size: 22KB - Virtual size: 21KB