fce3c973c17e9cf36e02fc5cecadf742_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fce3c973c17e9cf36e02fc5cecadf742_JaffaCakes118
Size

752KB
MD5

fce3c973c17e9cf36e02fc5cecadf742
SHA1

637c1086590009319e6a373198e1b886fa23d0d6
SHA256

bcd493c051aecb4e75e1d0a145ad26456e60e5ff129d714c657df34eaa17bca9
SHA512

c4b6ece7f4df2e4b622d5a6722af435e8eeb3615ac64ca6a1760ef0bf149c1bf5ea78a7402135b450e7f047f9a49a2ba232e8c3459409f3a7487eab1a2fbecca
SSDEEP

12288:lPnMfJfNRWtmIFECpVwfCpQHzQM8/6reF8gKQU5Lu0AsaseBc:lPnyJVRWtdlVeFHXm6rW8yU5K0D5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fce3c973c17e9cf36e02fc5cecadf742_JaffaCakes118

Files

fce3c973c17e9cf36e02fc5cecadf742_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e2ee65438706718bdddf5439a59d3a17

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Imports

comctl32

ImageList_DragEnter
ImageList_SetFlags
DrawInsert
ImageList_SetIconSize
ImageList_LoadImage
CreateToolbarEx
ImageList_SetFilter
ImageList_Draw
ImageList_DrawEx
ImageList_Duplicate
ImageList_BeginDrag
ImageList_GetImageInfo
ImageList_DrawIndirect
InitCommonControlsEx
ImageList_ReplaceIcon
ImageList_Copy

kernel32

TerminateProcess
WriteFile
LoadLibraryA
HeapDestroy
VirtualAlloc
IsDebuggerPresent
SetConsoleCtrlHandler
SetUnhandledExceptionFilter
QueryPerformanceCounter
ReadFile
InterlockedIncrement
GetCurrentProcess
SetFilePointer
GetCurrentThreadId
GetConsoleOutputCP
CompareStringW
GetOEMCP
GetStringTypeW
DeleteFileA
GetModuleFileNameA
OpenMutexA
GetFileType
HeapReAlloc
TlsFree
WideCharToMultiByte
GlobalFlags
SetLastError
SetHandleCount
EnterCriticalSection
SetEnvironmentVariableA
InterlockedExchange
GetCurrentThread
FreeLibrary
GetConsoleCP
GetConsoleMode
GetCurrentProcessId
CreateMutexA
GetProcessHeap
EnumResourceTypesA
GetStdHandle
GetSystemTimeAsFileTime
CompareStringA
GetDateFormatA
GetStartupInfoA
TlsAlloc
GetEnvironmentStrings
WriteConsoleW
MultiByteToWideChar
HeapCreate
GetThreadContext
GetPrivateProfileSectionNamesW
GetTimeFormatA
CreateSemaphoreA
VirtualFree
FlushConsoleInputBuffer
TlsGetValue
CreateMailslotW
LCMapStringW
CreateDirectoryExA
GetUserDefaultLCID
HeapFree
CloseHandle
LCMapStringA
LeaveCriticalSection
GetEnvironmentStringsW
VirtualQuery
GetLastError
IsValidCodePage
GetACP
GetModuleHandleA
GetProcAddress
GetCPInfo
DeleteCriticalSection
TlsSetValue
GetLocaleInfoW
SetStdHandle
UnhandledExceptionFilter
GetCommandLineA
HeapSize
OpenWaitableTimerW
CreateFileA
GetTimeZoneInformation
WriteConsoleA
GetStringTypeA
EnumSystemLocalesA
IsValidLocale
GetVersionExA
FreeEnvironmentStringsA
RtlUnwind
SetCurrentDirectoryW
GetTickCount
Sleep
FreeEnvironmentStringsW
GetLocaleInfoA
ExitProcess
GetFileAttributesA
InitializeCriticalSection
InterlockedDecrement
HeapAlloc
FlushFileBuffers

user32

SetRect
CharLowerBuffW
UnloadKeyboardLayout
SetCursorPos
CreateWindowExA
DrawEdge
GetClipboardFormatNameA
CharLowerBuffA
WaitForInputIdle
IsCharAlphaW
MonitorFromRect
RegisterClassA
GetScrollInfo
PtInRect
DialogBoxParamA
ShowWindow
DrawTextExA
CreateIconFromResourceEx
GetWindowRect
IsWindowUnicode
EqualRect
FrameRect
DdePostAdvise
RegisterClassExA
SetForegroundWindow
ReplyMessage
GetWindowContextHelpId
MessageBoxIndirectW
DestroyWindow
DdeGetData
SetProcessWindowStation
GetMenuItemRect
EndDialog
AnimateWindow
MessageBoxW
SetThreadDesktop
DdeDisconnectList
DefWindowProcA
CharUpperA
LoadCursorFromFileW
GetIconInfo
MsgWaitForMultipleObjectsEx
GetCursorPos
IsCharUpperW
SetUserObjectSecurity
EnumDesktopsW
DefMDIChildProcA
WINNLSGetIMEHotkey
SetParent
SetMenuContextHelpId
ChangeDisplaySettingsA
GetWindowTextA
TranslateMessage
GetMenuItemID
GetMessageW
ScrollDC
ScreenToClient
CascadeWindows
DefFrameProcA
AttachThreadInput
DdeClientTransaction
SetClipboardData

Sections

.text
Size: 176KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 400KB - Virtual size: 396KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 144KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2ee65438706718bdddf5439a59d3a17

Headers

File Characteristics

PDB Paths

Imports

comctl32

kernel32

user32

Sections

.text Size: 176KB - Virtual size: 173KB

.rdata Size: 400KB - Virtual size: 396KB

.data Size: 144KB - Virtual size: 141KB

.rsrc Size: 28KB - Virtual size: 25KB

.text
Size: 176KB - Virtual size: 173KB

.rdata
Size: 400KB - Virtual size: 396KB

.data
Size: 144KB - Virtual size: 141KB

.rsrc
Size: 28KB - Virtual size: 25KB