f42a5945bda8d541993ab544f4b91c35_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f42a5945bda8d541993ab544f4b91c35_JaffaCakes118
Size

613KB
MD5

f42a5945bda8d541993ab544f4b91c35
SHA1

35a6aec07a11a0534e10ceb5bd08b99877d17706
SHA256

99dd0579c2739bdfe1d209f197faf89332a2ed7432b8ba8e5f7fd62e257efbf7
SHA512

039ea2f115d8985681bf4abe517cbf2bf58f2beaabc014ca9c03365ab173de599036b473549484488d3638bbbcae1ca1679750b0f93152e03f943045787f3141
SSDEEP

12288:b8fFsnfC4eQ0gBLxbWU8sKraly9OJCGYHuwTuL/pEKq:bcFqfC4pxbqsMUy9N7HuEuLhN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f42a5945bda8d541993ab544f4b91c35_JaffaCakes118

Files

f42a5945bda8d541993ab544f4b91c35_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5a8b7b95219bfa6d8177e917aab95f5f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

shell32

SHGetSpecialFolderPathA
SHGetDataFromIDListA
CheckEscapesW

gdi32

EnumICMProfilesA
CreatePatternBrush
GetGlyphOutline
GetTextCharsetInfo
AddFontResourceA
OffsetViewportOrgEx
ColorMatchToTarget
GetCurrentPositionEx
StretchDIBits
SelectClipRgn
CreateSolidBrush
SetBoundsRect
GetTextCharset
GetEnhMetaFileW
PolyDraw
gdiPlaySpoolStream
GetFontData
CreateFontIndirectW
GetColorSpace
Pie
StretchBlt

user32

InvertRect
CallMsgFilterW
CharLowerBuffW
RegisterClassA
CopyImage
SetWinEventHook
DdeQueryConvInfo
ArrangeIconicWindows
GetWindowModuleFileNameW
CreateIcon
FreeDDElParam
MapWindowPoints
RegisterClassExA
GetKeyboardState
CharNextA
EqualRect
LoadMenuIndirectA
GetKeyboardLayout
SetWindowsHookA
GetKeyboardType
GetMenuContextHelpId
EnumDesktopWindows
EndPaint
UnhookWindowsHook

kernel32

GetOEMCP
HeapAlloc
GetLocaleInfoW
GetCurrentThread
GetProcAddress
HeapFree
SetConsoleCtrlHandler
LCMapStringA
LCMapStringW
GetCPInfo
GetSystemTimeAsFileTime
WriteConsoleA
GetConsoleMode
HeapReAlloc
GetModuleFileNameA
GetEnvironmentStringsW
LeaveCriticalSection
GetTickCount
FindResourceA
ReadFile
GetModuleFileNameW
TlsAlloc
WriteConsoleW
HeapCreate
GetModuleHandleA
CompareStringA
GetPrivateProfileIntA
LoadLibraryA
GetVersionExA
TlsFree
GetCalendarInfoW
EnterCriticalSection
IsDebuggerPresent
VirtualAlloc
GetLastError
GetTimeZoneInformation
InterlockedExchange
GetCommandLineA
GetStartupInfoA
MultiByteToWideChar
SetUnhandledExceptionFilter
GetCommandLineW
GetProcessHeap
FlushFileBuffers
FreeEnvironmentStringsW
SetStdHandle
GetEnvironmentStrings
GetUserDefaultLCID
OpenMutexA
TerminateProcess
SetFilePointer
FreeLibrary
InterlockedDecrement
GetStdHandle
GetCurrentProcessId
GetStartupInfoW
LockResource
GetCurrentThreadId
WriteFile
WideCharToMultiByte
GetExitCodeProcess
CreateMutexA
InterlockedIncrement
VirtualFree
SetEnvironmentVariableA
IsValidCodePage
InitializeCriticalSection
GetACP
GlobalFlags
VirtualQuery
DeleteCriticalSection
HeapSize
Sleep
GetTimeFormatA
GetStringTypeA
ExitProcess
SetHandleCount
FreeEnvironmentStringsA
HeapDestroy
RemoveDirectoryA
TlsGetValue
GetDateFormatA
CloseHandle
GetConsoleOutputCP
GetConsoleCP
GetFileType
CompareStringW
IsValidLocale
UnhandledExceptionFilter
CreateFileA
GetStringTypeW
RtlUnwind
QueryPerformanceCounter
SetLastError
lstrcmp
GetLocaleInfoA
EnumSystemLocalesA
GetCurrentProcess
TlsSetValue

comdlg32

PageSetupDlgA

Sections

.text
Size: 274KB - Virtual size: 274KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 320KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5a8b7b95219bfa6d8177e917aab95f5f

Headers

File Characteristics

Imports

comctl32

shell32

gdi32

user32

kernel32

comdlg32

Sections

.text Size: 274KB - Virtual size: 274KB

.rdata Size: 10KB - Virtual size: 35KB

.data Size: 320KB - Virtual size: 320KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 274KB - Virtual size: 274KB

.rdata
Size: 10KB - Virtual size: 35KB

.data
Size: 320KB - Virtual size: 320KB

.rsrc
Size: 7KB - Virtual size: 6KB