15d9151172cbcddb6f132d21fe98cc9a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

15d9151172cbcddb6f132d21fe98cc9a_JaffaCakes118
Size

80KB
MD5

15d9151172cbcddb6f132d21fe98cc9a
SHA1

cd5730e266e6d3b91339c57fb4aaa54e2a2f6daf
SHA256

683d1f0cd7bd16c11a835828b400f8670f3dd57f0b207f737d6e9dec7e9f7a7f
SHA512

0d27c14578ff59144504569985aca1e6f108a7cfe62068b5d907038ff57571d91e5e85fdfbab7db8dfaf2185880f7a9853a1c0c9aaaf08ca4d3f6f60f762bdc5
SSDEEP

1536:BZCXcr8noVFwrrC6ZYHvHDuRdHQAO00+TT9jvBoqhLC9xqAE2TU5JrSKY4S:BZCsbF6u6ZYH/iRdvOadn09VU5JrSKZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15d9151172cbcddb6f132d21fe98cc9a_JaffaCakes118

Files

15d9151172cbcddb6f132d21fe98cc9a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b0ce48d0776a2c47c2f4cdd35cc77e5f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
FreeLibrary
SetLastError
GetCurrentThreadId
lstrcmpA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
HeapDestroy
DeleteCriticalSection
FlushInstructionCache
GetCurrentProcess
CreateEventA
CreateThread
SetEvent
WaitForSingleObject
GetVersion
FindClose
FindNextFileA
DeleteFileA
RemoveDirectoryA
FindFirstFileA
lstrcpyA
lstrlenA
GetModuleFileNameA
GetExitCodeProcess
CreateProcessA
GetTempPathA
lstrcatA
GetSystemDirectoryA
LocalFree
LocalAlloc
GetCurrentThread
WriteFile
HeapFree
HeapAlloc
GetProcessHeap
InterlockedDecrement
CompareStringW
CompareStringA
SetFilePointer
SetStdHandle
GetOEMCP
GetACP
GetCPInfo
TlsGetValue
TlsAlloc
TlsSetValue
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
TerminateProcess
GetFileType
GetStdHandle
SetEnvironmentVariableA
SetHandleCount
FlushFileBuffers
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
GetFileSize
SetVolumeLabelA
GetLastError
GetDriveTypeA
CreateDirectoryA
GetFullPathNameA
CloseHandle
SetFileTime
DosDateTimeToFileTime
LocalFileTimeToFileTime
GetVolumeInformationA
_lread
GetTimeZoneInformation
_lwrite
GetFileAttributesA
SetFileAttributesA
CreateFileA
_lclose
GetCurrentDirectoryA
VirtualAlloc
InterlockedIncrement
_llseek
VirtualFree
HeapCreate
ExitProcess
FileTimeToSystemTime
FileTimeToLocalFileTime
HeapReAlloc
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA

user32

CreateDialogParamA
OemToCharA
RegisterWindowMessageA
IsDialogMessageA
GetDlgItem
SendMessageA
LoadImageA
LoadStringA
MsgWaitForMultipleObjects
SetTimer
KillTimer
wsprintfA
MessageBoxA
PostMessageA
IsWindow
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
SetWindowTextA
ShowWindow
SetWindowLongA
GetWindowLongA
GetParent
GetWindow
GetWindowRect
SystemParametersInfoA
GetClientRect
MapWindowPoints
SetWindowPos
EnableWindow
DestroyWindow
PostQuitMessage
GetSystemMetrics

advapi32

GetLengthSid
ImpersonateSelf
OpenThreadToken
OpenProcessToken
AllocateAndInitializeSid
InitializeSecurityDescriptor
FreeSid
InitializeAcl
AddAccessAllowedAce
SetSecurityDescriptorDacl
SetSecurityDescriptorGroup
SetSecurityDescriptorOwner
IsValidSecurityDescriptor
AccessCheck
RevertToSelf

ole32

CoInitialize
CoUninitialize

comctl32

ord17

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0ce48d0776a2c47c2f4cdd35cc77e5f

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

comctl32

version

Sections

.text Size: 56KB - Virtual size: 53KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 8KB - Virtual size: 114KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 56KB - Virtual size: 53KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 8KB - Virtual size: 114KB

.rsrc
Size: 4KB - Virtual size: 3KB