39f6d4c0049bf70e7b0166d0a3633665_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

39f6d4c0049bf70e7b0166d0a3633665_JaffaCakes118
Size

515KB
MD5

39f6d4c0049bf70e7b0166d0a3633665
SHA1

9fa2b1702d8f6ecc34262604f9f3ac82a4162902
SHA256

e8a6d7a9ee12040c0e00fa50b289e515be94d14a1190a18e3ccd0d5dd77465b1
SHA512

5c27d4ed3b92f194deaca67183900ce48d24739d7cdf80b2ea98f804683960bddbd2787f0fe15facefceff663925ceceaad4bf36707c8d662c60d27f12f19405
SSDEEP

12288:YngVodAO55OR0okVkANhDTk5hEvxHyfnpvXdB+pnl9utP5JOli1x29iyD98YUrG:Yngcg0ockANdkMll9utP49hherG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39f6d4c0049bf70e7b0166d0a3633665_JaffaCakes118

Files

39f6d4c0049bf70e7b0166d0a3633665_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bc33096a655247b0d89bd69fd6bca10f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Imports

kernel32

HeapFree
SystemTimeToFileTime
ReadFile
TlsAlloc
GetUserDefaultLCID
SetStdHandle
GetACP
GetVersionExA
GetDriveTypeA
IsValidCodePage
EnterCriticalSection
DeleteCriticalSection
GetCommandLineA
TerminateProcess
TlsGetValue
CreateMutexA
GetCurrentProcess
WriteFile
LeaveCriticalSection
GetDateFormatA
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetLastError
GetCurrentThread
TlsFree
LoadLibraryExA
GetFileType
ExitThread
GetEnvironmentStringsW
LoadResource
GetLocaleInfoW
GetModuleFileNameA
QueryPerformanceCounter
GlobalFindAtomA
HeapCreate
GetModuleHandleA
GetStringTypeA
SetLastError
VirtualFree
SetUnhandledExceptionFilter
CompareStringW
GetVolumeInformationA
GetStartupInfoA
GetProcAddress
CopyFileA
EnumSystemLocalesA
GetConsoleTitleW
InterlockedIncrement
CompareFileTime
OpenWaitableTimerA
InterlockedDecrement
GetLocaleInfoA
WideCharToMultiByte
GetEnvironmentStrings
GetProcessHeap
GetTimeFormatA
VirtualQuery
HeapAlloc
LCMapStringA
RtlUnwind
IsValidLocale
Sleep
HeapDestroy
SetHandleCount
CompareStringA
GetConsoleOutputCP
WriteConsoleW
GetStringTypeW
GetTickCount
GetTimeZoneInformation
LCMapStringW
GetThreadContext
CreateNamedPipeA
SetConsoleCtrlHandler
WriteConsoleOutputW
GetStdHandle
FreeEnvironmentStringsA
GetCPInfo
InitializeCriticalSection
CreateFileA
GetSystemTimeAsFileTime
GetCurrentProcessId
ExitProcess
FlushFileBuffers
MultiByteToWideChar
GetOEMCP
UnhandledExceptionFilter
OpenMutexA
GetProcessShutdownParameters
GetConsoleMode
InterlockedExchange
SetFilePointer
FreeLibrary
GetConsoleCP
HeapReAlloc
GetCurrentThreadId
CloseHandle
VirtualAlloc
IsDebuggerPresent
HeapSize
LoadLibraryA
TlsSetValue
GetCalendarInfoW
WriteConsoleA

advapi32

RegQueryValueExW
RegRestoreKeyW
RegQueryInfoKeyA
RegEnumKeyExA
RegSaveKeyW
RegCreateKeyExA
LookupSecurityDescriptorPartsA
InitiateSystemShutdownW
RegDeleteValueW
InitiateSystemShutdownA
RegCloseKey
RegEnumValueW
CryptGetDefaultProviderA
CryptDuplicateKey
CryptSetProvParam
RegEnumKeyW
CryptSetKeyParam
CryptContextAddRef
RegConnectRegistryA
CryptGetProvParam
CryptSetProviderExW
LookupAccountSidA
CryptDuplicateHash

user32

FillRect
InternalGetWindowText
GetTitleBarInfo
GetMenuInfo
RegisterClassExA
DefDlgProcA
RegisterClassA
DefMDIChildProcA
MoveWindow
ChildWindowFromPoint
CreateDialogParamW
CallWindowProcA
GetKeyboardState
GetTabbedTextExtentA
GetKeyNameTextA
GetWindowContextHelpId
SetPropW
CreateIconFromResourceEx
GetClassInfoA
TranslateAcceleratorW
SetWindowsHookA
RegisterDeviceNotificationA
GetTopWindow
EnumPropsA

comctl32

InitCommonControlsEx

shell32

SheChangeDirExW
SHFileOperationW

Sections

.text
Size: 354KB - Virtual size: 353KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc33096a655247b0d89bd69fd6bca10f

Headers

File Characteristics

PDB Paths

Imports

kernel32

advapi32

user32

comctl32

shell32

Sections

.text Size: 354KB - Virtual size: 353KB

.rdata Size: 35KB - Virtual size: 38KB

.data Size: 106KB - Virtual size: 105KB

.rsrc Size: 19KB - Virtual size: 19KB

.text
Size: 354KB - Virtual size: 353KB

.rdata
Size: 35KB - Virtual size: 38KB

.data
Size: 106KB - Virtual size: 105KB

.rsrc
Size: 19KB - Virtual size: 19KB