f2f8a171ca1ca5c8a646cee1c20901de_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f2f8a171ca1ca5c8a646cee1c20901de_JaffaCakes118
Size

384KB
MD5

f2f8a171ca1ca5c8a646cee1c20901de
SHA1

a1b1744fd04279a0d67129c0d9030a7f02aefc30
SHA256

bf53a485ed66792f430c03507145b324eebe4466510a469195bfb499710145e8
SHA512

9995bb504fecd581ed9ddd64a9398c78d2f10574b1d190e4d46a0272dcf8cfc51920d6be9598dced5d0a1c363c3fde37f29d029842d2329f389e4c632c7bad0d
SSDEEP

6144:Oxy2k5Ih2DnGDhAVodtbNHoVzRTp8dp0W/kHTiCy2Ny+ap5xfcX3d6Z:OpqG9ACNIl0r5/kHTi72NyPpjm3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f2f8a171ca1ca5c8a646cee1c20901de_JaffaCakes118

Files

f2f8a171ca1ca5c8a646cee1c20901de_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5c17e9f5aaddfe36528a67b14076f377

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegOpenKeyW

ole32

WriteFmtUserTypeStg
CoCreateInstance
CoTaskMemFree
CoInitialize

comdlg32

GetSaveFileNameW
GetOpenFileNameW
GetFileTitleW

user32

SetRectEmpty
SendMessageW
CreateCaret
SetActiveWindow
GetClientRect
CheckMenuItem
GetFocus
PostMessageW
GetWindowLongW
GetCaretPos
SetWindowTextW
IsWindowVisible
DispatchMessageW
LoadBitmapW
FillRect
GetCursorPos
CheckDlgButton
MessageBoxW
SetCaretPos
EndPaint
wsprintfW
DestroyCaret
SystemParametersInfoW
ShowCursor
InvalidateRect
DrawFocusRect
GetSystemMetrics
IsClipboardFormatAvailable
GetMenu
BeginPaint
MsgWaitForMultipleObjects
SetWindowLongW
SetDlgItemInt
ClientToScreen
ShowCaret
CharNextW
GetWindowDC
InflateRect

gdiplus

GdipDisposeImage
GdipSetPropertyItem
GdipGetPropertySize
GdipGetImageDecodersSize
GdipGetImageRawFormat

gdi32

SetTextAlign
StretchBlt
SetDIBColorTable
EnumFontFamiliesW
SetBrushOrgEx
GetPaletteEntries
CreateRectRgnIndirect
ExtTextOutW
Ellipse
GetBkMode
GetNearestPaletteIndex
CreateFontIndirectW
CreateBitmap
CreateHalftonePalette
GetNearestColor
SelectObject
SetViewportExtEx
RectVisible
Polygon
SetBkMode
OffsetRgn
Rectangle
PatBlt
GetObjectW
GetTextExtentPoint32W
SetDIBits
PtVisible
SelectPalette
GetPixel
Escape
Polyline
SetDIBitsToDevice
ResizePalette
PlayMetaFile
GetDIBColorTable

imm32

ImmGetCompositionWindow
ImmGetCompositionStringW

msvcrt

_wsplitpath
_c_exit
_controlfp
wcstok
_purecall
__wgetmainargs
_wtol
_adjust_fdiv
wcscmp
_beginthreadex
__CxxFrameHandler
_itow
_wtoi
__dllonexit

shell32

SHChangeNotify
ShellAboutW
SHGetFolderPathW

kernel32

GetExitCodeThread
MultiByteToWideChar
CreateFileW
GetFileTime
GetLastError
CloseHandle
SetUnhandledExceptionFilter
MulDiv
GetNumberFormatW
GlobalUnlock
lstrlenW
HeapQueryInformation
GetStartupInfoW
HeapSetInformation
LoadLibraryA
InterlockedDecrement
GlobalReAlloc
VirtualAlloc
GlobalLock
LocalFree
GetProcessHeaps
GetTempPathW
VirtualFree
UnhandledExceptionFilter
lstrlenA
GetProcessHeap
SetErrorMode

Sections

.text
Size: 195KB - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 180KB - Virtual size: 812KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5c17e9f5aaddfe36528a67b14076f377

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

ole32

comdlg32

user32

gdiplus

gdi32

imm32

msvcrt

shell32

kernel32

Sections

.text Size: 195KB - Virtual size: 195KB

.data Size: 8KB - Virtual size: 7KB

.rsrc Size: 180KB - Virtual size: 812KB

.text
Size: 195KB - Virtual size: 195KB

.data
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 180KB - Virtual size: 812KB