f55dddaadddc818036fb5311acae293e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f55dddaadddc818036fb5311acae293e_JaffaCakes118
Size

185KB
MD5

f55dddaadddc818036fb5311acae293e
SHA1

3d20beff530f29a3a2a347ffbe0e73dab74095ad
SHA256

7dd87fe2382a75641f6594f53dcf40d9a2d2410c9f254a3c30e59afed5483777
SHA512

bcc03fc973e9fa2c0a29a11120dab35f4a64f7c1e01d777d42b94793f90e2ebef9e2c3c876b131fc5701c211b6d0d6b3ee02d588fc16df854f271dc8c9af9779
SSDEEP

3072:i8ZUfXRgGMsTNlGgu7porJHo9eUICvcqE2czZoGdPJaczKs0gDPbGIfdd:JZUmONkgYkUe3CvzEpZtJb0g7qUd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f55dddaadddc818036fb5311acae293e_JaffaCakes118

Files

f55dddaadddc818036fb5311acae293e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ff497da5f475300f1c809966b42a40a1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetGraphicsMode
BitBlt
PatBlt
SetMiterLimit
CreateDIBSection
SetStretchBltMode
EndPath
CloseFigure
SelectClipRgn
SetROP2
SaveDC
GetDeviceCaps
FillPath
GetClipBox
CreateBitmap
GetWorldTransform
DeleteObject
ResetDCW
CreatePatternBrush
StartDocW
StartPage
SelectClipPath
DeleteDC
GetObjectA
CreatePalette
ExtCreatePen
MoveToEx
PolyBezierTo
AbortDoc
OffsetRgn
GetRgnBox
SetWorldTransform
StretchDIBits
GetDIBColorTable
StrokePath
Escape
GetCurrentObject
RestoreDC
ExtEscape
RealizePalette
CreateRectRgn
GetRegionData
SetPolyFillMode
SetGraphicsMode
PolylineTo
GetViewportOrgEx
CreatePolyPolygonRgn
SelectPalette
ModifyWorldTransform
CombineRgn
GetStockObject
CreateDCW
StretchBlt
CreateBrushIndirect
CreateICW
SelectObject
Rectangle
EndPage
BeginPath
EndDoc
LineTo
CreateCompatibleDC
CreateCompatibleBitmap
EqualRgn
IntersectClipRect
SetBrushOrgEx
ExtSelectClipRgn
SetDIBits
PolyDraw

ole32

OleInitialize
OleFlushClipboard
CoRevokeClassObject
CoUninitialize
CoGetProcessIdentifier
CoInitialize
CoCreateInstance
CoTaskMemAlloc
StgCreateDocfileOnILockBytes
OleUninitialize
CoGetClassObject
CoRegisterMessageFilter
CoTaskMemFree
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
OleIsCurrentClipboard
CoFreeUnusedLibraries
CLSIDFromProgID
CLSIDFromString

msimg32

AlphaBlend

kernel32

GetDateFormatW
GetACP
FindFirstFileA
GetUserDefaultLangID
TlsGetValue
TlsFree
GetSystemInfo
ReleaseMutex
InterlockedCompareExchange
Sleep
GetWindowsDirectoryA
GetLocalTime
FindNextFileA
GetModuleFileNameA
GetCalendarInfoW
GetThreadLocale
GetTimeFormatA
GlobalUnlock
SetUnhandledExceptionFilter
GetVersionExA
GetSystemTimeAsFileTime
GetLocaleInfoA
WideCharToMultiByte
lstrlenW
GetFileTime
MultiByteToWideChar
LeaveCriticalSection
GetModuleHandleA
CreateSemaphoreA
GetCurrentProcessId
EnterCriticalSection
GlobalAlloc
GetTimeFormatW
LocalAlloc
TerminateProcess
GetDateFormatA
GetLastError
SetThreadPriority
GetFileSize
CreateFileA
GetProcAddress
GetCurrentDirectoryA
GetCurrentThreadId
GetEnvironmentVariableW
SetCurrentDirectoryA
GetTempPathW
EnumResourceNamesA
ExitProcess
CreateMutexA
IsProcessorFeaturePresent
ReadFile
QueryPerformanceCounter
TlsSetValue
FreeLibrary
GlobalSize
InterlockedIncrement
InitializeCriticalSection
GlobalFree
LoadLibraryA
GetSystemDirectoryA
GetCurrentThread
UnhandledExceptionFilter
WaitForSingleObject
ReleaseSemaphore
GetProfileStringW
GetSystemDefaultLCID
DeleteCriticalSection
GetCurrentProcess
FindClose
GetThreadPriority
GlobalLock
GetTickCount
lstrcmpW
IsDebuggerPresent
DeleteFileW
CloseHandle
InterlockedExchange
RaiseException

advapi32

RegCloseKey
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA

shlwapi

PathRemoveFileSpecA
PathAppendA

user32

SetWindowPos
LoadCursorA
CharNextW
GetDC
CreateWindowExA
ReleaseDC
ScrollWindowEx
RegisterClassA
GetWindowRect
WindowFromDC
GetMonitorInfoA
OffsetRect
GetDesktopWindow
DestroyWindow
MonitorFromWindow
GetClientRect
GetSystemMetrics
GetActiveWindow
LoadIconA
MonitorFromPoint
SetActiveWindow
EnumDisplayMonitors
DefWindowProcA
UnregisterClassA

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ff497da5f475300f1c809966b42a40a1

Headers

File Characteristics

Imports

gdi32

ole32

msimg32

kernel32

advapi32

shlwapi

user32

Sections

.text Size: 103KB - Virtual size: 102KB

.rdata Size: 5KB - Virtual size: 5KB

.bss Size: 75KB - Virtual size: 74KB

.edata Size: 1024B - Virtual size: 376KB

.text
Size: 103KB - Virtual size: 102KB

.rdata
Size: 5KB - Virtual size: 5KB

.bss
Size: 75KB - Virtual size: 74KB

.edata
Size: 1024B - Virtual size: 376KB