efe768e20caeb39128f74d1bd86e1b79_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

efe768e20caeb39128f74d1bd86e1b79_JaffaCakes118
Size

584KB
MD5

efe768e20caeb39128f74d1bd86e1b79
SHA1

55d75f507b640d8be0132736f21c0acaafa89f85
SHA256

1786795c026ee7100a16c23e8acd1e7ac5c38c67f1e4aa348a7aad08d55c65e5
SHA512

5ef2597f65e2220abcc8e44b6789d70c8254e0f62c0b860f53b5b315296bcd589eba76810fff77bfe8e5ef76f3f679a79c572b1ba832698930b03d114cbb0f49
SSDEEP

12288:gDgMZzME/O57a+AUVvIYnYnBZ/TYDliJNtT4Lacd7:9MxMi0AUlCTAiUld7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
efe768e20caeb39128f74d1bd86e1b79_JaffaCakes118

Files

efe768e20caeb39128f74d1bd86e1b79_JaffaCakes118
.exe windows:4 windows x86 arch:x86

54b18bf9f2d272c50d9353b9e55c8689

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
InitializeCriticalSection
SetConsoleWindowInfo
ExitProcess
CreateEventA
TlsAlloc
LCMapStringW
GetStdHandle
FreeEnvironmentStringsW
WriteProfileStringW
GetTickCount
GetOEMCP
HeapFree
GetCPInfo
LeaveCriticalSection
GetUserDefaultLCID
FlushFileBuffers
WaitCommEvent
QueryPerformanceCounter
LoadLibraryA
GetCurrentThreadId
SetFileAttributesA
WideCharToMultiByte
CloseHandle
CompareStringW
ContinueDebugEvent
EnterCriticalSection
LocalAlloc
InterlockedExchange
HeapCreate
RtlMoveMemory
GetModuleHandleA
GetACP
LocalShrink
GetDiskFreeSpaceExA
EnumSystemLocalesA
IsValidCodePage
GlobalDeleteAtom
GetSystemInfo
EnumDateFormatsExA
DeleteCriticalSection
VirtualFreeEx
GetShortPathNameW
VirtualQueryEx
TerminateProcess
UnhandledExceptionFilter
GetLocaleInfoA
IsValidLocale
VirtualFree
GetShortPathNameA
GetStringTypeW
GlobalAddAtomA
SetHandleCount
LCMapStringA
GetModuleFileNameA
SetStdHandle
GetFileSize
HeapReAlloc
CompareStringA
SetUnhandledExceptionFilter
GetEnvironmentStringsW
GetLocaleInfoW
TlsGetValue
VirtualAlloc
GetCurrentProcess
SetFilePointer
VirtualQuery
GetTimeFormatA
OpenMutexA
GlobalReAlloc
FreeEnvironmentStringsA
RtlUnwind
ExpandEnvironmentStringsA
GetLastError
LoadLibraryW
GetSystemTimeAsFileTime
GetCurrentThread
SetEnvironmentVariableA
HeapAlloc
WriteFile
GetTimeZoneInformation
GetCommandLineA
IsBadWritePtr
GetDriveTypeA
lstrcmpiA
GetCurrentDirectoryA
CreateMutexA
GetStringTypeA
GetFileType
GetCurrentProcessId
SetThreadIdealProcessor
TlsSetValue
HeapDestroy
VirtualProtect
GetStartupInfoA
SystemTimeToTzSpecificLocalTime
ReadConsoleW
TlsFree
GetProcAddress
GetDateFormatA
GetVersionExA
ReadFile
SetLastError
GetEnvironmentStrings
MultiByteToWideChar
GetDiskFreeSpaceW
VirtualLock

comctl32

ImageList_SetFlags
InitCommonControlsEx
ImageList_AddMasked
CreateStatusWindowA
ImageList_GetImageInfo

user32

CallNextHookEx
GetClipboardOwner
MessageBoxA
DrawIconEx
PostQuitMessage
SetUserObjectInformationA
SetSystemCursor
GetMessageExtraInfo
SetWindowsHookW
InvalidateRect
CreateWindowExW
EnumPropsW
DdeSetUserHandle
CharNextW
SetClassLongW
GetKeyboardLayoutNameA
CheckRadioButton
EnumDisplaySettingsW
SetWindowsHookExW
RegisterClassExA
CallWindowProcW
ClipCursor
CreateDialogIndirectParamW
LoadMenuA
RemovePropA
IsCharLowerA
CharToOemW
DlgDirSelectExA
EndTask
CharNextExA
EqualRect
IsWindowEnabled
DefWindowProcW
DlgDirSelectExW
DestroyWindow
DlgDirSelectComboBoxExA
DragObject
AppendMenuA
ShowScrollBar
SwitchDesktop
ChangeMenuW
SetThreadDesktop
DialogBoxIndirectParamA
GetKeyState
DestroyCursor
SetMenuInfo
SetWindowLongA
ShowWindow
GetClassInfoExW
SetWinEventHook
MessageBoxIndirectW
RegisterClassA
GetWindow
CharUpperBuffW
MonitorFromPoint
LoadImageW
MapVirtualKeyA
GetScrollInfo
SetCapture
GetPropA

Sections

.text
Size: 188KB - Virtual size: 185KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54b18bf9f2d272c50d9353b9e55c8689

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 188KB - Virtual size: 185KB

.rdata Size: 252KB - Virtual size: 251KB

.data Size: 112KB - Virtual size: 133KB

.rsrc Size: 28KB - Virtual size: 26KB

.text
Size: 188KB - Virtual size: 185KB

.rdata
Size: 252KB - Virtual size: 251KB

.data
Size: 112KB - Virtual size: 133KB

.rsrc
Size: 28KB - Virtual size: 26KB