29d0d127b8e78882366fdf1021ee8db4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

29d0d127b8e78882366fdf1021ee8db4_JaffaCakes118
Size

1.7MB
MD5

29d0d127b8e78882366fdf1021ee8db4
SHA1

37a83ba9efd405ac1248b52ebf31f00b3a54054c
SHA256

153c65d6125da619de731bd2cb184867a3729525d0d7833113a9b700362ed0e1
SHA512

926e43ab1d71c98e3fff475557a97d0d6f3c3f995a5e563d033ea1db49fe8e4c8ba45ea75ac65ec1d25c8c9f8120bf1feed176cd9005a12ac95fea5fc15bc767
SSDEEP

49152:DLjvEP0iiOZl/1Argg445OueZ53t1GygobA:DMOgzb/gCA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
29d0d127b8e78882366fdf1021ee8db4_JaffaCakes118

Files

29d0d127b8e78882366fdf1021ee8db4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6f93f51f5d62b6f14fe0035cc645de26

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostQuitMessage
LoadBitmapA
SetWindowPos
IsWindow
ClientToScreen
GetDC
ReleaseDC
DestroyWindow
UpdateWindow
DefWindowProcA
ShowWindow
EnableWindow
TranslateMessage
GetWindowLongA
CreateWindowExA
SetFocus
GetSystemMetrics
GetWindowRect
PostMessageA
ReleaseCapture
SetWindowLongA
SetWindowTextA
SetTimer
GetDlgItem
ScreenToClient
LoadIconA
GetDesktopWindow
EndDialog
MessageBoxA
GetSysColor
SystemParametersInfoA
IsWindowVisible
InvalidateRect
SendMessageA
SetCursor

kernel32

TlsSetValue
GetStdHandle
FileTimeToSystemTime
GetFileAttributesA
WaitForSingleObject
HeapDestroy
GetFileAttributesW
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetCurrentDirectoryA
LocalAlloc
SetErrorMode
FreeEnvironmentStringsW
GetCPInfo
LoadLibraryW
GetStringTypeA
InterlockedExchange
WriteFile
GetTimeZoneInformation
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetFullPathNameA
GetOEMCP
LocalFree
GetExitCodeProcess
InitializeCriticalSection
LoadResource
FindClose
InterlockedDecrement
FormatMessageA
SetLastError
GetModuleFileNameW
IsDebuggerPresent
FlushFileBuffers
GetCurrentThreadId
GetCommandLineA
GetLastError
GetTickCount
GetCurrentThread
GetCurrentProcessId
GetModuleHandleA
ExitProcess
GetVersion
VirtualAlloc
Sleep
VirtualFree
FindResourceW
HeapCreate
IsValidCodePage
CreateProcessA
SizeofResource
SetStdHandle
GetModuleHandleW
GlobalLock
GetACP
CloseHandle
ReadFile
SetFilePointer
RaiseException
HeapSize
WideCharToMultiByte
lstrlenW
LockResource
GetEnvironmentStrings
RemoveDirectoryA
GlobalAlloc
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
UnmapViewOfFile
LCMapStringW
LeaveCriticalSection
HeapAlloc
CreateFileA
GetFileType
CreateFileW
CreateEventW
WaitForMultipleObjects
FindFirstFileW
CompareStringA
FindFirstFileA
lstrcmpA
CompareStringW
GetProcessHeap
GetSystemInfo
GetProcAddress
DeleteFileW
SetEvent
GetWindowsDirectoryA
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
VirtualProtect
TlsAlloc
QueryPerformanceCounter
FreeLibrary
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
GetLocaleInfoA
SetEndOfFile
VirtualQuery
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CreateThread
GetLocalTime
MultiByteToWideChar
TlsGetValue
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA

Sections

.text
Size: 1.7MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f93f51f5d62b6f14fe0035cc645de26

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 1.7MB - Virtual size: 2.0MB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 15KB - Virtual size: 15KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 1.7MB - Virtual size: 2.0MB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 15KB - Virtual size: 15KB

.rsrc
Size: 32KB - Virtual size: 31KB