ecb95f2d37fdc4492f2f8f5800b7c576_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ecb95f2d37fdc4492f2f8f5800b7c576_JaffaCakes118
Size

526KB
MD5

ecb95f2d37fdc4492f2f8f5800b7c576
SHA1

816f4a1699dd88f5855fee138554e8803ef43b44
SHA256

5471af340d5aad0438ef2cdc8c6202d5c1a8b078773ac682e0c0168488440df1
SHA512

3805c84266d549ec5aff1e56b81b369a4d1cbfe1ed1aebb60c9855d6dba153924a64c7b88f212583a3272da9c4ca30a264604507c762d55977ec2a4969a2ec2c
SSDEEP

12288:mErmb581TCHuAFKMOViWm8jEpehbwBGlo9GtsglGsiYw:xqbebJVQjehAYtCsU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ecb95f2d37fdc4492f2f8f5800b7c576_JaffaCakes118

Files

ecb95f2d37fdc4492f2f8f5800b7c576_JaffaCakes118
.exe windows:4 windows x86 arch:x86

379575faa137f9f4acd0aabf619d6ba6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DragMove
InitCommonControlsEx
ImageList_Destroy
CreateToolbar

kernel32

OpenFileMappingW
WaitForMultipleObjectsEx
HeapCreate
SetStdHandle
SetConsoleScreenBufferSize
GetEnvironmentStringsA
GetSystemTimeAsFileTime
MultiByteToWideChar
CreateMailslotA
lstrlenW
GlobalDeleteAtom
CopyFileA
GetCurrencyFormatW
GetCommandLineA
EnterCriticalSection
GlobalLock
ReleaseMutex
OpenWaitableTimerA
TlsGetValue
SetLastError
RtlZeroMemory
GetTimeZoneInformation
FindFirstFileA
FreeEnvironmentStringsW
OpenMutexA
SetEvent
GetSystemInfo
GetCurrentThreadId
TlsAlloc
GetThreadPriorityBoost
GetCurrentProcess
HeapSize
GetModuleHandleA
EnumResourceNamesA
GetModuleFileNameA
EnumCalendarInfoExW
CreateMutexA
GetOEMCP
GetCurrentThread
GetLocaleInfoW
SetCriticalSectionSpinCount
CompareStringA
GetVolumeInformationW
GetTickCount
OutputDebugStringW
GetEnvironmentVariableA
RtlMoveMemory
QueryPerformanceCounter
lstrcpyA
HeapFree
GetProcAddress
GlobalFree
lstrcpy
EnumTimeFormatsA
DeleteCriticalSection
GetStartupInfoA
GetStringTypeExA
LoadLibraryA
GlobalUnfix
SetHandleCount
FileTimeToSystemTime
SetEndOfFile
GetUserDefaultLCID
GetTimeFormatA
ReadFile
SetThreadContext
GetThreadPriority
LCMapStringW
GetDriveTypeW
InterlockedExchange
VirtualProtect
GetCalendarInfoW
GetDateFormatA
UnhandledExceptionFilter
LocalShrink
GetComputerNameA
WaitForSingleObjectEx
FlushFileBuffers
HeapAlloc
GlobalSize
SetThreadIdealProcessor
DeleteAtom
GetExitCodeProcess
GetProcessAffinityMask
HeapReAlloc
WideCharToMultiByte
RtlUnwind
LocalSize
InitializeCriticalSection
HeapDestroy
LeaveCriticalSection
TerminateProcess
GetConsoleTitleA
SetFileTime
CreateDirectoryA
GetStdHandle
SetCurrentDirectoryA
FreeEnvironmentStringsA
CompareFileTime
GetCPInfo
GetComputerNameW
CloseHandle
VirtualFreeEx
GetCurrentProcessId
VirtualAlloc
TransactNamedPipe
GetLocaleInfoA
IsBadWritePtr
IsValidLocale
GetEnvironmentStrings
GetEnvironmentStringsW
IsValidCodePage
EnumSystemLocalesA
GetStringTypeW
FormatMessageW
TlsFree
ExitProcess
VirtualAllocEx
GetStringTypeA
lstrcatA
LCMapStringA
ExpandEnvironmentStringsW
GetACP
CompareStringW
SetEnvironmentVariableA
VirtualProtectEx
SetEnvironmentVariableW
VirtualQuery
SetFilePointer
SetSystemTime
LockFile
VirtualFree
GetWindowsDirectoryW
GetPrivateProfileStringA
FlushInstructionCache
GetThreadContext
GetLastError
GlobalFindAtomA
GetThreadTimes
GetTempFileNameA
GetEnvironmentVariableW
CreateEventA
GetVersionExA
WriteFile
LocalCompact
GetFileType
TlsSetValue

user32

WaitForInputIdle
IsCharUpperA
DefFrameProcA
CheckRadioButton
EnumDisplaySettingsExW
SetWindowContextHelpId
DrawStateW
SetUserObjectInformationA
RegisterDeviceNotificationA
LoadKeyboardLayoutW
DlgDirListComboBoxW
DialogBoxIndirectParamA
GetSysColor
DefWindowProcW
MoveWindow
GetClassNameA
GetFocus
SetDlgItemTextW
DestroyWindow
MonitorFromWindow
GetAltTabInfo
SetForegroundWindow
RegisterWindowMessageA
PackDDElParam
SetFocus
InflateRect
RegisterClassA
CreateWindowExA
SetProcessDefaultLayout
MessageBoxA
ShowWindow
GetPropA
RegisterClassExA

Sections

.text
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 253KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 109KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

379575faa137f9f4acd0aabf619d6ba6

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 152KB - Virtual size: 152KB

.rdata Size: 253KB - Virtual size: 252KB

.data Size: 109KB - Virtual size: 121KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 152KB - Virtual size: 152KB

.rdata
Size: 253KB - Virtual size: 252KB

.data
Size: 109KB - Virtual size: 121KB

.rsrc
Size: 10KB - Virtual size: 9KB