c120f7e7d5b5730f26a9f36218695371_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c120f7e7d5b5730f26a9f36218695371_JaffaCakes118
Size

1.2MB
MD5

c120f7e7d5b5730f26a9f36218695371
SHA1

145bac254c8d7906d69fa7dd900128f13f8baba0
SHA256

f078982f5b2b2c331ed4b5ee53d4ae9ffbf3ea6d8607bf35dbfc8dc7e819ea23
SHA512

f73c46ff4fcb20ae0b4b9f66de1b537c4895c90d0e66483d0c2f8a2f3c1e71e6f711ad611bd356cf1af8977ae0a13c1aa4c16723938d407d83f883966a1e4150
SSDEEP

12288:vK+In9gI0bPL12rvfLmbovkkZc7Phj7LIJyvj3d0P70IlKdCuH20EX0kRItnAifN:yU5PI6bnR7JkJyL3OPgzdCzholfN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c120f7e7d5b5730f26a9f36218695371_JaffaCakes118

Files

c120f7e7d5b5730f26a9f36218695371_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2affbb9b50be74a602e9ecb28a22fe65

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLCID
GetLocaleInfoW
IsValidCodePage
FindFirstFileW
GetFullPathNameW
GetTempPathW
OutputDebugStringW
TlsFree
GetLocalTime
CloseHandle
FindClose
GetLastError
GetCurrentThreadId
HeapReAlloc
VirtualAlloc
LocalAlloc
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
GlobalUnlock
GlobalLock
GetCommandLineW
SetLastError
EncodePointer
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
GetModuleHandleW
EnterCriticalSection
LeaveCriticalSection
HeapFree
GetACP
GetOEMCP
GetCPInfo
IsDebuggerPresent
IsProcessorFeaturePresent
LoadLibraryExW
RtlUnwind
HeapAlloc
GetStringTypeW
HeapSize
LCMapStringW
FlushFileBuffers
CreateFileW

comctl32

ImageList_Create
CreatePropertySheetPageW
FlatSB_GetScrollPos
_TrackMouseEvent
CreateStatusWindowW
ImageList_SetIconSize
ImageList_DragShowNolock
ImageList_DragMove
ImageList_DragEnter
ImageList_LoadImageW
ImageList_Replace
ImageList_ReplaceIcon
ImageList_Add
ImageList_SetImageCount
ImageList_GetImageCount
ImageList_Destroy
InitCommonControlsEx
ord17

ole32

PropVariantClear
CLSIDFromProgID
StringFromCLSID
ReleaseStgMedium

comdlg32

ChooseColorW

Sections

.text
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 748KB - Virtual size: 748KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 7.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 362KB - Virtual size: 361KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2affbb9b50be74a602e9ecb28a22fe65

Headers

File Characteristics

Imports

kernel32

comctl32

ole32

comdlg32

Sections

.text Size: 71KB - Virtual size: 70KB

.rdata Size: 748KB - Virtual size: 748KB

.data Size: 10KB - Virtual size: 7.4MB

.rsrc Size: 362KB - Virtual size: 361KB

.text
Size: 71KB - Virtual size: 70KB

.rdata
Size: 748KB - Virtual size: 748KB

.data
Size: 10KB - Virtual size: 7.4MB

.rsrc
Size: 362KB - Virtual size: 361KB