f588bc09a40ba89e5e5a9b7896ed14fb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f588bc09a40ba89e5e5a9b7896ed14fb_JaffaCakes118
Size

436KB
MD5

f588bc09a40ba89e5e5a9b7896ed14fb
SHA1

6b028d35e316ab6a0ba10d56e84a8056aa2caae4
SHA256

9527fd76f9f342ce2c48d3978a980557f268a112be5851e57e1b64bd96262d71
SHA512

6f85161c7776d90d6be6f7457945fed8cd187ed3fc7c0e6a9b4f447afa0fbd7260ad3e669ecf40f801de2d0328bdb360d2565530aef91ae093628d9c8f592f57
SSDEEP

6144:NBVyR5OvqvcNc++q+JHvKZ6iIGEcLQR5cxIE3OKaFS:NqR8ucNcWgHig35cOt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f588bc09a40ba89e5e5a9b7896ed14fb_JaffaCakes118

Files

f588bc09a40ba89e5e5a9b7896ed14fb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3faa0e07b78bfe30746f4b0ede7614c3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\YTEZDWKRSE\TFWRXPNF\CBOR

Imports

user32

ShowWindow
DefWindowProcA
DdeCreateStringHandleW
PeekMessageW
SetMenuContextHelpId
DdeSetQualityOfService
DispatchMessageA
MessageBoxA
RegisterClassExA
GetClassNameA
DefWindowProcW
GetWindowModuleFileNameA
IsCharAlphaA
TrackPopupMenu
InsertMenuW
DdeCmpStringHandles
GetPropA
CharPrevW
RegisterDeviceNotificationA
AppendMenuW
LoadIconA
GetCaretPos
DrawFrame
MessageBoxIndirectW
DestroyWindow
GetMenuDefaultItem
RedrawWindow
RegisterClassA
CreateWindowExW
EnumPropsExA
EnumWindowStationsA

kernel32

GetProcessHeaps
GetEnvironmentVariableA
GetTimeZoneInformation
QueryPerformanceCounter
TlsGetValue
FreeLibrary
HeapCreate
DeleteCriticalSection
SetHandleCount
VirtualFree
GetCPInfo
GetCurrentThread
GetStringTypeA
GetStdHandle
LeaveCriticalSection
HeapAlloc
GetLocaleInfoA
InitializeCriticalSection
GlobalAddAtomW
GetEnvironmentStringsW
GetDateFormatA
OpenSemaphoreA
GetFileSize
CompareStringA
VirtualAlloc
GetConsoleOutputCP
GetFileType
FreeEnvironmentStringsA
LCMapStringW
GetSystemTimeAsFileTime
GetACP
EnumDateFormatsW
GetLocaleInfoW
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
GetLastError
HeapSize
FreeLibraryAndExitThread
WaitNamedPipeW
LoadLibraryA
GetStringTypeW
WriteConsoleA
HeapReAlloc
GetModuleHandleA
GetConsoleCP
FlushFileBuffers
SetFileAttributesW
SetLastError
IsValidCodePage
ReadFile
MultiByteToWideChar
TlsFree
lstrcatW
EnterCriticalSection
InterlockedIncrement
EnumSystemLocalesA
GetCurrentThreadId
GetProcAddress
WideCharToMultiByte
InterlockedDecrement
EnumResourceNamesA
SetConsoleCtrlHandler
GetEnvironmentStrings
CompareStringW
SetEnvironmentVariableA
IsValidLocale
HeapDestroy
GetVersionExA
GetTempFileNameW
SetStdHandle
LocalShrink
GetStartupInfoA
GetModuleFileNameA
RtlUnwind
CreateMutexA
GetOEMCP
Sleep
GetTimeFormatA
GetDiskFreeSpaceA
WriteConsoleW
GetConsoleMode
ExitProcess
OpenMutexA
UnhandledExceptionFilter
GetProcessHeap
SetThreadContext
FreeEnvironmentStringsW
GetCurrentProcess
InterlockedExchange
GetCurrentProcessId
GetCommandLineA
GetTickCount
GetUserDefaultLangID
TlsSetValue
GetCurrentDirectoryA
VirtualQuery
SetFilePointer
CreateFileA
LCMapStringA
WriteFile
TlsAlloc
GetUserDefaultLCID
HeapFree
ReleaseSemaphore
VirtualProtect
ReleaseMutex
CloseHandle

comctl32

ImageList_Write
ImageList_GetDragImage
ImageList_Add
ImageList_DragMove
ImageList_AddMasked
ImageList_Remove
ImageList_DragEnter
ImageList_LoadImage
ImageList_BeginDrag
CreatePropertySheetPage
ImageList_Merge
ImageList_SetBkColor
DrawStatusTextW
InitCommonControlsEx
ImageList_EndDrag
ImageList_DrawEx

Sections

.text
Size: 156KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3faa0e07b78bfe30746f4b0ede7614c3

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

comctl32

Sections

.text Size: 156KB - Virtual size: 154KB

.rdata Size: 100KB - Virtual size: 98KB

.data Size: 100KB - Virtual size: 127KB

.rsrc Size: 76KB - Virtual size: 72KB

.text
Size: 156KB - Virtual size: 154KB

.rdata
Size: 100KB - Virtual size: 98KB

.data
Size: 100KB - Virtual size: 127KB

.rsrc
Size: 76KB - Virtual size: 72KB