f0af6c1a0684c54eaf7864a7e7fe087e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f0af6c1a0684c54eaf7864a7e7fe087e_JaffaCakes118
Size

334KB
MD5

f0af6c1a0684c54eaf7864a7e7fe087e
SHA1

5caedd956a0702e1e791e8d7fe0b99c42f9e09f1
SHA256

bfc9f9217014e94a9db8c3add4de36dbcf48466bcf0fc039c0586ad7d7b935b6
SHA512

f7f24580fe29e301d00445f4dff5aaf535c59001b44ee17562006d8dfef4ba010dec09f80aa3dea01ab9c40a6eacf39afb049a03ca0bf02f3e5a94996fde457a
SSDEEP

6144:Ayf4WG2FGgKXPCkwhOHD5C80fqn0G/sxxpJrR8/SREXnLJ4rjdY7K1Jy:NwWG2FyXPCkw8qfa/ypJrO/SRNjb2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f0af6c1a0684c54eaf7864a7e7fe087e_JaffaCakes118

Files

f0af6c1a0684c54eaf7864a7e7fe087e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d7f872892e2c0c1ceeb988a4497440c4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx
CreateUpDownControl
ImageList_EndDrag
ImageList_AddIcon
ImageList_SetIconSize
DrawStatusTextW
ImageList_Duplicate
DrawInsert
ImageList_LoadImageA
ImageList_GetImageCount
ImageList_Copy
ImageList_GetImageRect
DrawStatusText
ImageList_DragLeave
ImageList_ReplaceIcon
ImageList_GetBkColor
CreateToolbarEx
ImageList_Write
DrawStatusTextA
ImageList_SetDragCursorImage
ImageList_BeginDrag
MakeDragList
ImageList_GetIcon
ImageList_Replace
ImageList_SetFilter
ImageList_Add

user32

SetCursorPos
RegisterWindowMessageA
NotifyWinEvent
ChangeClipboardChain
LoadCursorW
LoadMenuA
PackDDElParam
SetProcessDefaultLayout
OpenWindowStationW
GetKeyboardState
CreateIconFromResourceEx
IntersectRect
RegisterClassA
IsCharAlphaW
GetMenuState
SetScrollInfo
GetIconInfo
DialogBoxParamA
RegisterClassExA
SendMessageA
GetKeyNameTextA
UnregisterClassA
ChangeDisplaySettingsExA
UnhookWinEvent
SetUserObjectSecurity
DdeCreateStringHandleA
GetWindowDC
GetMenuStringA
TabbedTextOutW
GetClipboardOwner
EnumDisplaySettingsA
EnumDesktopsA
IsWindowVisible
CloseWindowStation
ReuseDDElParam
DestroyIcon
ShowWindow
GetPropW
CreateDesktopW
GetGuiResources
SetWinEventHook
ReleaseCapture
GetLastActivePopup
DefWindowProcA
SetWindowsHookW
DdeUnaccessData
GetMonitorInfoW
InflateRect
CreateWindowExA
DdeNameService
UnregisterHotKey
IsDialogMessageW
DestroyWindow
GetClassLongA
MessageBoxA

kernel32

TryEnterCriticalSection
GetLocaleInfoW
FindAtomW
LeaveCriticalSection
DeleteCriticalSection
FlushFileBuffers
EnterCriticalSection
GetSystemTimeAsFileTime
VirtualQuery
GetCurrentThreadId
OpenMutexA
HeapAlloc
GetEnvironmentStringsW
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsW
CompareStringA
GetACP
GetLogicalDrives
CloseHandle
IsBadWritePtr
CompareStringW
SetTimeZoneInformation
GetOEMCP
VirtualFree
ResetEvent
HeapDestroy
lstrcatA
HeapSize
GetProcAddress
GetCPInfo
FindClose
WriteConsoleInputW
GetLongPathNameW
GetCurrentProcessId
GetTimeZoneInformation
GetUserDefaultLCID
GetStringTypeW
CreateNamedPipeW
InitializeCriticalSectionAndSpinCount
LCMapStringA
RtlUnwind
VirtualAlloc
GetStartupInfoW
SetSystemTime
SetConsoleTitleW
SetThreadIdealProcessor
HeapCreate
SetStdHandle
VirtualProtect
MultiByteToWideChar
OpenEventW
ExitProcess
GetLocaleInfoA
LoadLibraryA
GetStringTypeA
GetTimeFormatW
ReadConsoleW
IsValidLocale
GetFileType
GetStdHandle
lstrcmpi
LCMapStringW
EnumSystemLocalesA
InitializeCriticalSection
WaitForDebugEvent
IsValidCodePage
FormatMessageW
GetVersionExA
GetCommandLineW
TlsSetValue
ReadConsoleOutputA
UnlockFileEx
GetCurrentProcess
RaiseException
GetCurrentThread
GetSystemInfo
HeapFree
GetLocalTime
TlsAlloc
DeleteFiber
GetCommandLineA
SetLocaleInfoW
GetLastError
GetModuleHandleA
SetEnvironmentVariableA
SetHandleCount
lstrcpynW
GetStartupInfoA
GetVolumeInformationW
WideCharToMultiByte
GetProcAddress
ReadConsoleOutputAttribute
WriteFile
TlsGetValue
IsBadReadPtr
FreeEnvironmentStringsA
GetDateFormatA
ReadFile
HeapReAlloc
GetConsoleOutputCP
ReadConsoleOutputCharacterA
QueryPerformanceCounter
GetTickCount
CreateMutexA
WaitCommEvent
GetModuleFileNameW
SetFilePointer
GetEnvironmentStrings
SetComputerNameW
TerminateProcess
GetCalendarInfoW
GetTimeFormatA
TlsFree
FoldStringA
GetEnvironmentVariableW
CreateSemaphoreA
InterlockedExchange
SetLastError

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 93KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d7f872892e2c0c1ceeb988a4497440c4

Headers

File Characteristics

Imports

comctl32

user32

kernel32

Sections

.text Size: 144KB - Virtual size: 143KB

.rdata Size: 72KB - Virtual size: 71KB

.data Size: 93KB - Virtual size: 111KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 144KB - Virtual size: 143KB

.rdata
Size: 72KB - Virtual size: 71KB

.data
Size: 93KB - Virtual size: 111KB

.rsrc
Size: 24KB - Virtual size: 23KB