d2f5599ae54c53a8aa8d74d861c6c398_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d2f5599ae54c53a8aa8d74d861c6c398_JaffaCakes118
Size

3.1MB
MD5

d2f5599ae54c53a8aa8d74d861c6c398
SHA1

a16ec13293e63f03737aba7698ccc21c3e122b17
SHA256

d3f628b4c4d684ef405f9dd4979896c7d983a9b895496afc911ebf58ae28fc6b
SHA512

cfcb582efda45fdd80baac27a479489ba12e049dee16b8a8f71a9e92b992a3675d59430c9d9f133d676eafffb66b9b19525a0413df32e22b1bf891d9651d6f0f
SSDEEP

98304:KMp94lkIp14CzjjKwW0mS3UEeUn7F+s+HCtHO9zu:KMASIp133mSn5FNtHou

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d2f5599ae54c53a8aa8d74d861c6c398_JaffaCakes118

Files

d2f5599ae54c53a8aa8d74d861c6c398_JaffaCakes118
.exe windows:4 windows x86 arch:x86

381bc84caa4a92ec01d32ea15bbd98a5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA
VirtualProtect
GlobalUnlock
GetExitCodeProcess
lstrcmpA
GlobalReAlloc
FreeLibrary
GetProcAddress
LoadLibraryA
GetTempFileNameA
ExitProcess
TerminateProcess
GetCurrentProcess
ReleaseMutex
CreateMutexA
OpenMutexA
MultiByteToWideChar
CreateProcessA
IsDBCSLeadByte
GetVersionExA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
MoveFileExA
WritePrivateProfileSectionA
GetPrivateProfileSectionA
GetShortPathNameA
GetLastError
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetConsoleOutputCP
WriteConsoleA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetStdHandle
SetEnvironmentVariableA
CompareStringW
CompareStringA
InitializeCriticalSection
SetFileAttributesA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetTimeZoneInformation
WideCharToMultiByte
HeapSize
GetStdHandle
HeapCreate
HeapDestroy
VirtualAlloc
VirtualFree
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
InterlockedDecrement
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
HeapReAlloc
GetStartupInfoA
GetProcessHeap
HeapFree
GetCommandLineA
HeapAlloc
WriteConsoleW
RtlUnwind
RaiseException
InterlockedExchange
SetLastError
DosDateTimeToFileTime
LocalFileTimeToFileTime
ReadFile
SetFileTime
GetCurrentDirectoryA
CreateDirectoryA
GlobalAlloc
LocalSize
GlobalLock
GlobalSize
SetCurrentDirectoryA
RemoveDirectoryA
DeleteFileA
Sleep
LocalAlloc
LocalFree
WriteFile
lstrcatA
GetWindowsDirectoryA
GetSystemDirectoryA
GetTempPathA
lstrcmpiA
GetModuleFileNameA
GetDriveTypeA
CreateFileA
SetFilePointer
GetFileSize
CloseHandle
lstrcpynA
GetModuleHandleA
GlobalFree
lstrcpyA
GetTickCount
GetLocaleInfoA
lstrlenA

user32

IsWindowVisible
IsIconic
IsWindow
ExitWindowsEx
GetSystemMetrics
ScreenToClient
LoadStringA
MessageBoxA
SetCursor
GetSysColor
DestroyWindow
SystemParametersInfoA
SetPropA
MapDialogRect
DialogBoxParamA
SetFocus
GetWindowLongA
SetTimer
GetCursorPos
GetScrollInfo
KillTimer
SetRect
SetRectEmpty
GetSysColorBrush
EnableWindow
SendDlgItemMessageA
DrawTextExA
CheckDlgButton
GetParent
PostMessageA
IsDlgButtonChecked
FillRect
GetWindowTextA
DrawTextA
CallWindowProcA
CreateDialogParamA
SetWindowPos
PeekMessageA
TranslateMessage
DispatchMessageA
IsDialogMessageA
LoadIconA
LoadImageA
RegisterClassExA
CreateWindowExA
GetSystemMenu
EnableMenuItem
PostQuitMessage
GetDC
ReleaseDC
BeginPaint
EndPaint
SendMessageA
IsZoomed
DefWindowProcA
MessageBeep
SetWindowLongA
UpdateWindow
InvalidateRect
EndDialog
GetDlgItem
GetWindowRect
MoveWindow
ShowWindow
wsprintfA
SetDlgItemTextA
SetClassLongA
SetWindowTextA
GetClientRect
PtInRect
LoadCursorA
LoadBitmapA

gdi32

CreateCompatibleDC
GetObjectA
DeleteDC
CreateCompatibleBitmap
CreatePen
SelectObject
CreateSolidBrush
Rectangle
DeleteObject
SetBkMode
CreateFontIndirectA
TextOutA
BitBlt
SetBkColor
GetStockObject
SetTextAlign
CreateRectRgn
CreateBrushIndirect
CreateFontA
GetTextFaceA
CreateDIBitmap
StretchBlt
SetStretchBltMode
SetTextColor
SelectClipRgn
GetDeviceCaps

shell32

ShellExecuteA
SHChangeNotify
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetPathFromIDListA

ole32

CoInitialize
CoTaskMemFree
CoCreateInstance

comctl32

CreatePropertySheetPageA
PropertySheetA
ord8
ord17

Sections

.text
Size: 136KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

381bc84caa4a92ec01d32ea15bbd98a5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

comctl32

Sections

.text Size: 136KB - Virtual size: 134KB

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 8KB - Virtual size: 123KB

.rsrc Size: 116KB - Virtual size: 112KB

.text
Size: 136KB - Virtual size: 134KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 8KB - Virtual size: 123KB

.rsrc
Size: 116KB - Virtual size: 112KB