fc23bc2ed7997b6be7f2b6a0031c964b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fc23bc2ed7997b6be7f2b6a0031c964b_JaffaCakes118
Size

174KB
MD5

fc23bc2ed7997b6be7f2b6a0031c964b
SHA1

e2f0ef35b88403ce67cba66bc40f24cdc5c64556
SHA256

ad3b29cc0c8a2603ef6f530e5afe393e7e603aac35918e8601c3aa5d06841784
SHA512

2fcb47a55208265b28e828c12807d2abb4a4f858333611e6713390967e96301a61b92b458ef521d30a513c7242e3bdf4450a86c19590af48b4f3a2032a4e8ba8
SSDEEP

3072:chfVm7GHgeO6AkOCyZzvF/wmJGw5cvIDBWESKwEDTBp974tGlAH:chtm7GZYCE9o2Gw5cKBoz8Tvqkl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc23bc2ed7997b6be7f2b6a0031c964b_JaffaCakes118

Files

fc23bc2ed7997b6be7f2b6a0031c964b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5b27aecfedc352bdaf5e140b5b078256

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CreateILockBytesOnHGlobal
OleIsCurrentClipboard
CoTaskMemFree
StgOpenStorageOnILockBytes
CoFreeUnusedLibraries
CoGetProcessIdentifier
StgCreateDocfileOnILockBytes
CoGetClassObject
OleFlushClipboard
CoRevokeClassObject
OleInitialize
CoInitialize
OleUninitialize
CLSIDFromProgID
CoUninitialize
CoTaskMemAlloc
CoRegisterMessageFilter
CoCreateInstance
CLSIDFromString

advapi32

RegQueryValueExA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA
RegSetValueExA

user32

ReleaseDC
EnumDisplayMonitors
SetActiveWindow
ScrollWindowEx
DestroyWindow
GetActiveWindow
OffsetRect
DefWindowProcA
WindowFromDC
MonitorFromWindow
GetClientRect
GetSystemMetrics
CharNextW
GetMonitorInfoA
GetWindowRect
MonitorFromPoint
GetDC
LoadCursorA
GetDesktopWindow
SetWindowPos
RegisterClassA
CreateWindowExA
LoadIconA
UnregisterClassA

shlwapi

PathRemoveFileSpecA
PathAppendA

gdi32

Rectangle
SetWorldTransform
FillPath
CreateBrushIndirect
ExtSelectClipRgn
SelectObject
GetViewportOrgEx
OffsetRgn
SelectClipRgn
ResetDCW
StrokePath
StretchDIBits
GetCurrentObject
StretchBlt
EndPath
GetGraphicsMode
Escape
GetObjectA
PolylineTo
SetMiterLimit
GetDIBColorTable
CreatePolyPolygonRgn
CreateDIBSection
SetPolyFillMode
GetRgnBox
StartDocW
AbortDoc
DeleteObject
CreateCompatibleBitmap
CreatePatternBrush
PatBlt
MoveToEx
CreateICW
IntersectClipRect
GetWorldTransform
GetClipBox
StartPage
CombineRgn
CreateRectRgn
EndDoc
SetGraphicsMode
SelectClipPath
SetDIBits
EndPage
DeleteDC
EqualRgn
ExtCreatePen
RestoreDC
SaveDC
GetStockObject
GetRegionData
ModifyWorldTransform
CreateCompatibleDC
ExtEscape
GetDeviceCaps
PolyBezierTo
SetBrushOrgEx
SelectPalette
BitBlt
CreatePalette
CreateDCW
CloseFigure
RealizePalette
LineTo
SetROP2
SetStretchBltMode
BeginPath
CreateBitmap
PolyDraw

kernel32

GetCurrentThreadId
WaitForSingleObject
GlobalUnlock
SetThreadPriority
GetCalendarInfoW
ReleaseMutex
lstrlenW
UnhandledExceptionFilter
GlobalLock
TlsSetValue
GetTimeFormatW
GetUserDefaultLangID
GetThreadPriority
GetLocaleInfoA
GetEnvironmentVariableW
CreateSemaphoreA
GetTickCount
lstrcmpW
ReleaseSemaphore
GetACP
SetUnhandledExceptionFilter
GetSystemDirectoryA
TlsFree
ReadFile
FindClose
GetSystemDefaultLCID
GetModuleHandleA
ExitProcess
InterlockedIncrement
GetProcAddress
CreateFileA
TerminateProcess
LoadLibraryA
EnterCriticalSection
FindNextFileA
GetLocalTime
DeleteCriticalSection
GetCurrentProcessId
EnumResourceNamesA
MultiByteToWideChar
IsProcessorFeaturePresent
GlobalAlloc
FreeLibrary
GetFileTime
TlsGetValue
GetTimeFormatA
QueryPerformanceCounter
GetDateFormatW
InterlockedCompareExchange
GetWindowsDirectoryA
LocalAlloc
GetCurrentDirectoryA
GetCurrentThread
GetVersionExA
GetDateFormatA
GetThreadLocale
GetProfileStringW
GetTempPathW
GetFileSize
SetCurrentDirectoryA
InitializeCriticalSection
WideCharToMultiByte
GetModuleFileNameA
DeleteFileW
CreateMutexA
GlobalFree
GetCurrentProcess
GetLastError
CloseHandle
Sleep
FindFirstFileA
GlobalSize
InterlockedExchange
GetSystemTimeAsFileTime
GetSystemInfo
IsDebuggerPresent
LeaveCriticalSection
RaiseException

msimg32

AlphaBlend

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b27aecfedc352bdaf5e140b5b078256

Headers

File Characteristics

Imports

ole32

advapi32

user32

shlwapi

gdi32

kernel32

msimg32

Sections

.text Size: 100KB - Virtual size: 99KB

.rdata Size: 5KB - Virtual size: 5KB

.bss Size: 66KB - Virtual size: 66KB

.edata Size: 1024B - Virtual size: 92KB

.text
Size: 100KB - Virtual size: 99KB

.rdata
Size: 5KB - Virtual size: 5KB

.bss
Size: 66KB - Virtual size: 66KB

.edata
Size: 1024B - Virtual size: 92KB