4092728dee6b7e257a3d0a58b4963ba0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4092728dee6b7e257a3d0a58b4963ba0_JaffaCakes118
Size

322KB
MD5

4092728dee6b7e257a3d0a58b4963ba0
SHA1

51fb7304e69b384bfce4c927d2b084c4035c917a
SHA256

daeca6dff3a7144c7dad41af0c88771ba97189412e44fbe4d4feecd36a761555
SHA512

7fb247ab663c2b6bfbc7927eddf1830ad00dab814437489b1dcb59291f0d2a2e96f4f5b7c05a83ad0ad09480c30f07dd981a24ae6efa1767e89b57b0fc96d341
SSDEEP

3072:uDkSzYjfoFegrRGv1LaI8QcIJMQ04sVLgQpUzfJEXEVXyWVCA/99l+E6RYrJ9wq+:u3cjMkHcIqQIK4er+Zq/KRA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4092728dee6b7e257a3d0a58b4963ba0_JaffaCakes118

Files

4092728dee6b7e257a3d0a58b4963ba0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2c771abbd388435a4acc7f0163ff55d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileIntA
HeapAlloc
GetCurrentDirectoryA
SetEnvironmentVariableA
CompareStringW
HeapReAlloc
CloseHandle
FlushFileBuffers
CompareStringA
LoadLibraryA
GetProcAddress
SetStdHandle
GetLastError
WriteFile
SetFilePointer
GetFileType
GetStdHandle
RtlUnwind
GetOEMCP
GetACP
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
GetCPInfo
FreeEnvironmentStringsA
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetStringTypeA
LCMapStringW
GetStringTypeW
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
TerminateProcess
ExitProcess
GetCurrentProcess
VirtualFree
HeapCreate
VirtualAlloc
GetModuleFileNameA
WritePrivateProfileStringA
GetFullPathNameA
GetDriveTypeA
GetVersion
GetCommandLineA
HeapDestroy
HeapFree
GetSystemTime
GetTimeZoneInformation
GetModuleHandleA
GetStartupInfoA
GetLocalTime

user32

SetWindowPos
SetWindowRgn
GetMessageA
DispatchMessageA
TranslateMessage
SetTimer
UpdateWindow
ShowWindow
CreateWindowExA
GetClientRect
GetWindowRect
RegisterClassExA
AdjustWindowRect
GetSystemMetrics
SetCapture
ReleaseCapture
MessageBoxA
SetCursor
GetDlgItemTextA
SendMessageA
SendDlgItemMessageA
GetDlgItem
CreateDialogParamA
SetDlgItemTextA
IsDialogMessageA
MoveWindow
InvalidateRect
InvalidateRgn
ReleaseDC
GetWindowDC
LoadBitmapA
KillTimer
LoadMenuA
GetSubMenu
EndPaint
PostQuitMessage
BeginPaint
DestroyWindow
ClientToScreen
TrackPopupMenu
LoadCursorA
DefWindowProcA
LoadIconA

gdi32

CreateBitmap
CreateCompatibleBitmap
CreateDCA
SelectObject
CombineRgn
DeleteObject
DeleteDC
CreateCompatibleDC
BitBlt
GetObjectA
GetDIBits
StretchBlt
SetBkColor
SetTextColor
CreateRectRgn

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 1023B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.urdata
Size: 102KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2c771abbd388435a4acc7f0163ff55d9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 39KB - Virtual size: 38KB

.rdata Size: 1024B - Virtual size: 1023B

.data Size: 17KB - Virtual size: 23KB

.idata Size: 3KB - Virtual size: 2KB

.rsrc Size: 157KB - Virtual size: 156KB

.urdata Size: 102KB - Virtual size: 124KB

.text
Size: 39KB - Virtual size: 38KB

.rdata
Size: 1024B - Virtual size: 1023B

.data
Size: 17KB - Virtual size: 23KB

.idata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 157KB - Virtual size: 156KB

.urdata
Size: 102KB - Virtual size: 124KB