fce67a65c75fde5e201ffe35b353eebb_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fce67a65c75fde5e201ffe35b353eebb_JaffaCakes118
Size

332KB
MD5

fce67a65c75fde5e201ffe35b353eebb
SHA1

859ca1b0d0381cbc05cb7aa08ca3067fa18086fb
SHA256

c49367819e9e4ba1ca8ff434fe62cb1096c9800974e343956efda00226e0cb79
SHA512

fa877c76ec24de8364b26eaad6fee63516332c49eec08d82b9ab1f5227e6bb4747d67e2b384238293c969f3c3c948567a9aa2d6ad6a6a1aeaa4e50ede6b9d715
SSDEEP

6144:/y0wa8BnMM8OJCHoCv0HIU4xSGxVhTHLs:/yXMMVAHo6yoxTx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fce67a65c75fde5e201ffe35b353eebb_JaffaCakes118

Files

fce67a65c75fde5e201ffe35b353eebb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

12f347f7df56d34bff9b5a610c57e5bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\ttyetekuef\hbvd\osnaosoe\axi

Imports

kernel32

GetCalendarInfoW
GetCommandLineW
LCMapStringA
RtlUnwind
SetConsoleWindowInfo
GetShortPathNameA
CompareStringW
CreateNamedPipeW
SetFileTime
GetUserDefaultLCID
GetDateFormatA
GetProcAddress
UnhandledExceptionFilter
GetProfileSectionW
SetConsoleTextAttribute
TlsAlloc
GetCurrencyFormatW
GetCurrentThreadId
LoadLibraryA
GetProfileIntW
GetTimeFormatA
SetThreadAffinityMask
GetFileAttributesExA
OpenFile
TlsSetValue
FreeLibraryAndExitThread
HeapReAlloc
GetEnvironmentStrings
MultiByteToWideChar
SetFilePointer
DeleteCriticalSection
ReleaseMutex
GetStdHandle
GetCurrentProcess
FreeEnvironmentStringsW
GetThreadPriority
GetProfileStringA
HeapFree
WriteFile
RaiseException
ConvertDefaultLocale
CreateMutexW
GetStartupInfoA
DeleteFileA
FreeEnvironmentStringsA
GetModuleFileNameW
EnumSystemLocalesA
GetCPInfo
OpenMutexA
GetTickCount
GetProfileStringW
GetLocaleInfoA
SetEnvironmentVariableA
GetModuleFileNameA
HeapSize
CreateFileMappingW
CreateSemaphoreW
SetStdHandle
GetThreadLocale
InitializeCriticalSection
TlsFree
GetCommandLineA
IsValidLocale
GetFileType
GetLastError
LCMapStringW
IsValidCodePage
GetEnvironmentVariableA
EnumDateFormatsExW
LeaveCriticalSection
HeapDestroy
SetFileAttributesA
VirtualProtect
EnumResourceNamesW
WritePrivateProfileStructW
CloseHandle
GetTimeZoneInformation
HeapCreate
GetModuleHandleA
GetSystemInfo
DosDateTimeToFileTime
OpenSemaphoreW
GetVersionExA
ReleaseSemaphore
WriteConsoleInputA
FindResourceExA
IsDebuggerPresent
ExitProcess
lstrcpyA
WriteConsoleOutputCharacterA
GetFileTime
GetTempPathW
MoveFileA
lstrcmpiA
GetTempFileNameW
ReadConsoleOutputW
WideCharToMultiByte
SetLastError
GetStringTypeW
CreateMutexA
GetStartupInfoW
InterlockedExchange
EnumCalendarInfoW
SetHandleCount
VirtualQuery
EnterCriticalSection
ReadFile
TlsGetValue
GetProcessHeaps
ReadConsoleW
GetACP
VirtualFree
ReadConsoleInputA
lstrcpy
EnumDateFormatsA
QueryPerformanceCounter
FoldStringA
GetStringTypeA
WritePrivateProfileSectionA
DeleteFiber
TerminateProcess
GetEnvironmentStringsW
VirtualUnlock
CompareStringA
FlushFileBuffers
FreeResource
EnumSystemCodePagesW
GetLogicalDriveStringsW
VirtualAlloc
GetLocaleInfoW
GetPrivateProfileStringW
lstrcatA
CreateProcessW
LocalLock
GetSystemTimeAsFileTime
MoveFileExA
GetCurrentProcessId
GetVolumeInformationW
IsBadWritePtr
HeapAlloc
SetConsoleOutputCP
GetOEMCP
GetCurrencyFormatA
GetCurrentThread

comctl32

CreatePropertySheetPageA
DrawStatusTextA
ImageList_EndDrag
ImageList_Duplicate
ImageList_DrawIndirect
InitCommonControlsEx

user32

UnionRect
DestroyAcceleratorTable
WindowFromPoint
MonitorFromWindow
SetLastErrorEx
ExitWindowsEx
DdeUninitialize
OpenClipboard
CallWindowProcA
SwitchToThisWindow
DrawMenuBar
GetKeyState
SetCursor
DefDlgProcA
RegisterClassA
GetWindowTextA
SetWindowsHookExA
DdeInitializeW
FillRect
SendMessageW
EnableMenuItem
SetShellWindow
RegisterClassExA
wsprintfA
TranslateAcceleratorA
SetClipboardViewer
DlgDirListW
DialogBoxParamA
RegisterDeviceNotificationW
GetForegroundWindow
SetDlgItemTextW
TabbedTextOutW
DestroyWindow
ShowCaret
EnumPropsExA
SetPropW
VkKeyScanA
GetShellWindow

Sections

.text
Size: 132KB - Virtual size: 130KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

12f347f7df56d34bff9b5a610c57e5bf

Headers

File Characteristics

PDB Paths

Imports

kernel32

comctl32

user32

Sections

.text Size: 132KB - Virtual size: 130KB

.rdata Size: 72KB - Virtual size: 70KB

.data Size: 92KB - Virtual size: 113KB

.rsrc Size: 32KB - Virtual size: 29KB

.text
Size: 132KB - Virtual size: 130KB

.rdata
Size: 72KB - Virtual size: 70KB

.data
Size: 92KB - Virtual size: 113KB

.rsrc
Size: 32KB - Virtual size: 29KB