f71e15b4902ae59b6b2584241151bf21_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f71e15b4902ae59b6b2584241151bf21_JaffaCakes118
Size

256KB
MD5

f71e15b4902ae59b6b2584241151bf21
SHA1

05638e04a7a83a921268c29530e72e114004ca66
SHA256

56c1518363d2bfe847fd12477101bc27d9eee1f937ec32d709eaadd1b64cadea
SHA512

abfa5e3fc9df3cd3d3633fcdb2931b6ffa0aa4664ccaa244b1eb7e3c9c0d831091e745ace0971cd64949946fd5db61fd4c9b33f08b74f2af8e56fd86fe39457b
SSDEEP

6144:KJI4rMx2WyGIBWBmKiZF4wiuUv62wuqt9eTZ:vwo2WyGIBw4OwiuKJwuqPk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f71e15b4902ae59b6b2584241151bf21_JaffaCakes118

Files

f71e15b4902ae59b6b2584241151bf21_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1b11dedb678c579212753ec80e12fbb4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

PropertySheetA
CreatePropertySheetPageA
ord17

kernel32

DosDateTimeToFileTime
Sleep
RemoveDirectoryA
GlobalSize
WriteFile
LocalSize
FreeLibrary
GetProcAddress
LoadLibraryA
GetTempFileNameA
ExitProcess
TerminateProcess
GetCurrentProcess
ReleaseMutex
CreateMutexA
OpenMutexA
GlobalReAlloc
GetExitCodeProcess
MultiByteToWideChar
WideCharToMultiByte
GetVersionExA
SystemTimeToFileTime
CreateProcessA
GetStringTypeW
GetStringTypeA
LocalFileTimeToFileTime
LCMapStringA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetOEMCP
GetACP
GetCPInfo
HeapSize
HeapReAlloc
HeapFree
RaiseException
GetVersion
GetCommandLineA
GetStartupInfoA
HeapAlloc
RtlUnwind
GetWindowsDirectoryA
GetSystemDirectoryA
GetTempPathA
lstrcmpiA
GlobalUnlock
SetFileAttributesA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
SetFileTime
DeleteFileA
CloseHandle
GetModuleFileNameA
SetFilePointer
ReadFile
LocalFree
GlobalAlloc
GlobalLock
LocalAlloc
CreateFileA
GetFileSize
GetCurrentDirectoryA
SetCurrentDirectoryA
GetFileAttributesA
CreateDirectoryA
lstrcatA
lstrcpyA
GlobalFree
lstrcpynA
GetModuleHandleA
GetTickCount
lstrlenA
LCMapStringW

user32

DrawEdge
SetRectEmpty
GetSysColor
FillRect
SetFocus
CheckDlgButton
EnableWindow
IsDlgButtonChecked
GetScrollInfo
SetTimer
LoadBitmapA
GetParent
SendDlgItemMessageA
GetWindowLongA
SetWindowPos
SetPropA
PostMessageA
DrawTextExA
DialogBoxParamA
DestroyWindow
PeekMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
DefWindowProcA
KillTimer
GetCursorPos
SystemParametersInfoA
OffsetRect
GetWindowTextA
SetWindowTextA
SetClassLongA
SetDlgItemTextA
wsprintfA
SendMessageA
BeginPaint
GetClientRect
EndPaint
GetDC
ReleaseDC
PostQuitMessage
LoadIconA
LoadImageA
RegisterClassExA
CreateWindowExA
AdjustWindowRect
GetSystemMetrics
GetSystemMenu
EnableMenuItem
SetWindowLongA
UpdateWindow
InvalidateRect
SetRect
DrawTextA
MessageBoxA
GetDlgItem
GetWindowRect
ScreenToClient
PtInRect
LoadCursorA
SetCursor
EndDialog
MoveWindow
ShowWindow
CallWindowProcA

gdi32

CreatePen
DeleteDC
BitBlt
CreateCompatibleDC
GetObjectA
CreateCompatibleBitmap
CreateDIBitmap
SelectObject
SetStretchBltMode
SetBkColor
CreateFontIndirectA
GetStockObject
SelectClipRgn
SetTextAlign
CreateRectRgn
CreateBrushIndirect
GetTextFaceA
CreateSolidBrush
Rectangle
DeleteObject
SetBkMode
SetTextColor
TextOutA
StretchBlt
CreateFontA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
GetUserNameA
RegCreateKeyExA
RegCloseKey

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc
ShellExecuteA
SHBrowseForFolderA

ole32

CoCreateInstance
CoUninitialize
CoInitialize

Sections

.text
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b11dedb678c579212753ec80e12fbb4

Headers

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

advapi32

shell32

ole32

Sections

.text Size: 60KB - Virtual size: 58KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 16KB - Virtual size: 74KB

.rsrc Size: 32KB - Virtual size: 28KB

.text
Size: 60KB - Virtual size: 58KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 16KB - Virtual size: 74KB

.rsrc
Size: 32KB - Virtual size: 28KB