46748d2686c326304046264cd183b09c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

46748d2686c326304046264cd183b09c_JaffaCakes118
Size

355KB
MD5

46748d2686c326304046264cd183b09c
SHA1

10d62b7662045cfdd0fb331238f4a5cb2215458a
SHA256

44cee53921eac4092525a58704da1778a298007a92e7c2d831ee8e475e4a45b5
SHA512

fa363f4c1887d15a4476369f4d194ecde061ca200b1ade52da21067cff546cf2d22569900932b350c31fbd134aeb047c5488439560be18fbbdecd8b2b0e0e3ff
SSDEEP

6144:6PbNlAJinRIfUjTvFCw/9OMuaDT4bqU1NKANRGyP3ZP9:6PJDRIfUXFCMODaDcbhNtRp3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46748d2686c326304046264cd183b09c_JaffaCakes118

Files

46748d2686c326304046264cd183b09c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

36e2b3a848838cf16e3f42c7d138704b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

ipv6mon.pdb

Imports

msvcrt

_XcptFilter
_cexit
exit
_wcmdln
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
??1type_info@@UAE@XZ
_onexit
__CxxFrameHandler
_wcsicmp
wcscpy
_exit
_c_exit
_controlfp
?terminate@@YAXXZ
__dllonexit

advapi32

RegOpenKeyExA
AllocateAndInitializeSid
DuplicateTokenEx
OpenProcessToken
IsWellKnownSid
GetAce
GetAclInformation
GetSecurityDescriptorDacl
FreeSid
RegSetValueExW
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
CheckTokenMembership

kernel32

GetTickCount
GetProcAddress
GetModuleHandleW
MulDiv
CloseHandle
lstrcmpiW
WaitForMultipleObjects
CreateThread
GetCurrentThreadId
OpenEventW
CreateEventW
SetEvent
GetLastError
lstrlenW
OpenProcess
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleA
GetStartupInfoW
GetVersionExA
LoadLibraryA

gdi32

CreateFontIndirectW
SetBitmapDimensionEx
ExtTextOutW
StretchBlt
BitBlt
GetStockObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
RealizePalette
GetObjectW
GetDeviceCaps
DeleteObject
CreatePalette
PatBlt

user32

OpenWindowStationW
SetProcessWindowStation
GetSystemMetrics
PtInRect
SetRectEmpty
InflateRect
CopyRect
EqualRect
GetWindowRect
GetClientRect
ClientToScreen
UpdateWindow
IsWindowVisible
SetTimer
KillTimer
GetActiveWindow
SystemParametersInfoW
GetKeyState
MessageBoxW
GetAsyncKeyState
GetMessagePos
AdjustWindowRectEx
EnableWindow
IsWindow
RegisterWindowMessageW
IsIconic
IntersectRect
IsRectEmpty
SetRect
FillRect
EnableMenuItem
GetSubMenu
LoadMenuW
PostMessageW
GetSystemMenu
InvalidateRect
OpenClipboard
GetProcessWindowStation
LoadCursorW
DrawIconEx
GetIconInfo
CloseClipboard
SetClipboardData
EmptyClipboard
SetCursor
ReleaseDC
GetDC
GetCursorPos
SetWindowLongW
CloseDesktop
GetUserObjectInformationW
OpenDesktopW
OpenInputDesktop
SetThreadDesktop
GetThreadDesktop
WinHelpW
RedrawWindow
DrawIcon
AppendMenuW
SendMessageW
LoadIconW
UnregisterHotKey
wsprintfW
RegisterHotKey
GetUserObjectSecurity
SetForegroundWindow

shell32

SHAppBarMessage
ShellExecuteW

ole32

CoUninitialize
CoInitialize

psapi

EnumProcesses

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 244KB - Virtual size: 253KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 25KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

36e2b3a848838cf16e3f42c7d138704b

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcrt

advapi32

kernel32

gdi32

user32

shell32

ole32

psapi

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 48KB - Virtual size: 47KB

.data Size: 244KB - Virtual size: 253KB

.bss Size: - Virtual size: 25KB

.rsrc Size: 5KB - Virtual size: 5KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 48KB - Virtual size: 47KB

.data
Size: 244KB - Virtual size: 253KB

.bss
Size: - Virtual size: 25KB

.rsrc
Size: 5KB - Virtual size: 5KB

.reloc
Size: 4KB - Virtual size: 3KB