f1e20221c386d191ddd46da8c1e303e0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f1e20221c386d191ddd46da8c1e303e0_JaffaCakes118
Size

82KB
MD5

f1e20221c386d191ddd46da8c1e303e0
SHA1

256bb7a3c88b765076fa00c125ee1c88893ca31c
SHA256

8d9df711c9456da7222fe14ced33ec139b43b72ef2d44fc923759970c4bbbc5f
SHA512

5f04b08a37f8ca31044bfa3b4c5fefdf8738425a0eefa380cd04acd410a928b7bf64a09ea8e9452184cd7e681cd6379a35cbe33405cb5200ac7df06944711eda
SSDEEP

1536:LWrBCf8t/xuPfeoMyt75LTSN2u+eFLf1kT/Uvg1lx0JGUQtky:LWrBCUbuPf3MK7JTbTeFLt0x1lMQtky

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f1e20221c386d191ddd46da8c1e303e0_JaffaCakes118

Files

f1e20221c386d191ddd46da8c1e303e0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

34e89f21256e74977b63f1336ddd428d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ClearCommBreak
CloseHandle
CommConfigDialogW
CreateProcessW
CreateSemaphoreW
DeviceIoControl
DosDateTimeToFileTime
ExitProcess
FindFirstVolumeA
FlushFileBuffers
FoldStringW
GetACP
GetCommandLineA
GetCurrentDirectoryW
GetEnvironmentStringsA
GetLogicalDriveStringsA
GetModuleHandleA
GetOEMCP
GetProcessWorkingSetSize
GetStartupInfoA
GetStartupInfoW
GetSystemDefaultLangID
GetSystemTimeAsFileTime
GetTempPathA
GetVersionExA
GlobalGetAtomNameA
GlobalWire
HeapAlloc
HeapCreate
IsBadCodePtr
IsBadWritePtr
IsProcessorFeaturePresent
IsValidLocale
LoadLibraryA
LoadLibraryExW
LoadModule
LocalFree
LocalUnlock
MoveFileWithProgressA
OpenEventA
OpenEventW
OpenSemaphoreA
OpenWaitableTimerW
ReleaseSemaphore
SetCurrentDirectoryA
SetErrorMode
SetLocalTime
SetThreadContext
SwitchToFiber
Toolhelp32ReadProcessMemory
WaitCommEvent
lstrlenA

user32

SetTimer
SetFocus
SetCursor
SetClipboardData
SendMessageTimeoutA
RegisterClassExA
PostQuitMessage
OffsetRect
MapWindowPoints
LoadStringA
SetWindowPos
GetUpdateRgn
GetSysColor
GetPropA
GetKeyState
GetDoubleClickTime
GetDlgItem
EndDialog
EmptyClipboard
DialogBoxParamA
DialogBoxIndirectParamA
DefWindowProcA
CreateWindowExA
CreateIconIndirect
CreateDialogParamA
CheckMenuItem
BeginDeferWindowPos
ShowWindow
TrackPopupMenu
TranslateMessage
UpdateWindow
WindowFromPoint
KillTimer

msi

MsiGetComponentPathA
MsiGetFileSignatureInformationW
MsiGetProductCodeFromPackageCodeW
MsiGetProductInfoW
MsiGetUserInfoA
MsiPreviewBillboardW
MsiProvideAssemblyA
MsiProvideComponentFromDescriptorA
MsiProvideQualifiedComponentExW
MsiQueryFeatureStateA
MsiFormatRecordA
MsiQueryProductStateW
MsiRecordIsNull
MsiRecordReadStream
MsiReinstallProductW
MsiSequenceA
MsiSetFeatureAttributesA
MsiSetInstallLevel
MsiSetTargetPathW
MsiSourceListClearAllW
MsiSummaryInfoPersist
MsiSummaryInfoSetPropertyW
MsiUseFeatureA
MsiEnumProductsA
MsiEnumPatchesW
MsiEnumFeaturesW
MsiEnumComponentsW
MsiEnumClientsW
MsiEnableUIPreview
MsiDoActionA
MsiDatabaseOpenViewA
MsiCollectUserInfoW
MsiAdvertiseProductExW
MsiQueryFeatureStateW

oleacc

AccessibleChildren

oledlg

OleUIBusyW
OleUICanConvertOrActivateAs
OleUIChangeIconA

dbghelp

SymGetTypeFromName
SymLoadModuleEx
WinDbgExtensionDllInit
SymGetModuleInfo64
sym

comctl32

CreatePropertySheetPageA
CreatePropertySheetPageW
CreateStatusWindowA
CreateUpDownControl
DrawStatusTextA
DrawStatusTextW
FlatSB_EnableScrollBar
FlatSB_GetScrollInfo
PropertySheetW
MakeDragList
LBItemFromPt
ImageList_SetImageCount
ImageList_SetFlags
ImageList_Merge
ImageList_GetImageRect
ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_GetIcon
ImageList_GetBkColor
ImageList_EndDrag
ImageList_DragMove
ImageList_DragEnter
ImageList_Add
GetMUILanguage
GetEffectiveClientRect
FlatSB_SetScrollProp
FlatSB_SetScrollInfo
FlatSB_GetScrollRange
FlatSB_GetScrollPos

comdlg32

ChooseColorA
GetFileTitleW
GetSaveFileNameA
PrintDlgExA
PrintDlgExW
ReplaceTextW
PrintDlgA

security

RevertSecurityContext
InitSecurityInterfaceA
ImportSecurityContextW
ImpersonateSecurityContext
FreeContextBuffer
EnumerateSecurityPackagesA

Sections

.text
Size: 51KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

34e89f21256e74977b63f1336ddd428d

Headers

File Characteristics

Imports

kernel32

user32

msi

oleacc

oledlg

dbghelp

comctl32

comdlg32

security

Sections

.text Size: 51KB - Virtual size: 52KB

.data Size: 28KB - Virtual size: 28KB

.rsrc Size: 512B - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 4KB

.text
Size: 51KB - Virtual size: 52KB

.data
Size: 28KB - Virtual size: 28KB

.rsrc
Size: 512B - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 4KB