fd69c0f82069c9637691bb07774ceaa1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fd69c0f82069c9637691bb07774ceaa1_JaffaCakes118
Size

107KB
MD5

fd69c0f82069c9637691bb07774ceaa1
SHA1

e59188ed3486f0b4b0d91994c41cc598bcf1f39f
SHA256

cf38fe784d3bc6b05f9604bbe833e90c7389b8410ccbc034ca397f004756720f
SHA512

24c4b412f54c1894fbf88d15ff1757dfa0cd4c8f84d6536bc96764fecb8a1282f2cbe0a862615d40ebc69ea5fdcccb69d5c48331c951a1e03ba1a5f308876781
SSDEEP

1536:d1SSkGfIaS9Tjs+a9etxAH7mkhI5VOF0orKpo85Vcpp4M7LqNqq3:LS7c2VdgHQ/fgmGLqN1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd69c0f82069c9637691bb07774ceaa1_JaffaCakes118

Files

fd69c0f82069c9637691bb07774ceaa1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

918c275d11f5bc15a447b036ab57132d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Remove
ImageList_DragShowNolock

gdi32

CreateCompatibleBitmap
CreateFontIndirectA
BitBlt
CreatePenIndirect
SelectPalette
SelectObject
GetDIBColorTable

advapi32

RegQueryValueA

shell32

Shell_NotifyIconA
SHGetFolderPathA

comdlg32

FindTextA
GetSaveFileNameA
GetFileTitleA

user32

GetScrollPos
GetForegroundWindow
SetTimer
IsDialogMessageW
CreateIcon
GetSubMenu
SetWindowLongW
UnregisterClassA
GetKeyboardLayoutList
CharToOemA
MapVirtualKeyA
GetScrollRange
PostQuitMessage
GetParent
EnumThreadWindows
GetTopWindow
PostMessageA
EnumChildWindows
ReleaseDC
SetRect
PeekMessageA
EnumWindows
GetMenuStringA
WaitMessage
IntersectRect
LoadIconA
ChildWindowFromPoint
GetKeyboardType
GetKeyboardState
DestroyCursor
GetMenuItemID
DrawIconEx
SetMenu
IsWindowVisible
DrawIcon
ShowScrollBar
GetWindowTextA
SetFocus
RegisterClipboardFormatA
DefWindowProcA
IsZoomed
GetMenuItemCount
DrawEdge
GetClassInfoA
SetWindowLongA
EnableWindow
GetClassLongA
GetKeyboardLayout
GetLastActivePopup
GetActiveWindow
GetDC
SetWindowPos
GetWindowLongA
SetWindowPlacement
UpdateWindow
CallWindowProcA
MessageBoxA
SetClassLongA
IsIconic
GetWindowDC
GetCapture
LoadBitmapA
DrawAnimatedRects
PtInRect
ShowOwnedPopups
RemoveMenu
EmptyClipboard
SetWindowsHookExA
CloseClipboard
ShowWindow
SetScrollPos
InflateRect
wsprintfA
TranslateMessage
DrawTextA
OpenClipboard
GetClipboardData
GetSysColorBrush
GetWindowPlacement
ReleaseCapture
WindowFromPoint
SetScrollInfo
IsDialogMessageA
ScrollWindow
SetPropA
DefFrameProcA
GetSystemMenu
GetScrollInfo
GetKeyboardLayoutNameA
LoadCursorA
DrawMenuBar
IsWindowEnabled
GetWindowRect
GetDCEx
TranslateMDISysAccel
ActivateKeyboardLayout
GetWindowThreadProcessId
GetMessagePos
KillTimer
RegisterWindowMessageA
OffsetRect
PeekMessageW
SetParent
GetClientRect
DestroyMenu
GetPropA
GetDlgItem
IsWindow
MapWindowPoints
MoveWindow
CharNextW

shlwapi

SHGetValueA
SHDeleteKeyA

version

VerQueryValueA
VerFindFileA
GetFileVersionInfoSizeA

ole32

StgOpenStorage
CoUnmarshalInterface
CoFreeUnusedLibraries
CoUninitialize
CoCreateGuid
CoCreateInstanceEx
StringFromIID
ReleaseStgMedium
CoRevokeClassObject
CLSIDFromString

kernel32

GetCurrentProcessId
GetProcAddress
GlobalDeleteAtom
VirtualAlloc
GetStartupInfoA
GetFullPathNameA
GetThreadLocale
GetModuleHandleA
GetACP
ExitThread
LoadLibraryA
ExitProcess
GetOEMCP

msvcrt

log
_acmdln
atol
strncmp
malloc
memmove
strcmp
wcschr

oleaut32

RegisterTypeLib
SafeArrayCreate
VariantChangeType
SysFreeString

Sections

CODE
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 403B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

918c275d11f5bc15a447b036ab57132d

Headers

File Characteristics

Imports

comctl32

gdi32

advapi32

shell32

comdlg32

user32

shlwapi

version

ole32

kernel32

msvcrt

oleaut32

Sections

CODE Size: 29KB - Virtual size: 29KB

.tls Size: 512B - Virtual size: 403B

.data Size: 75KB - Virtual size: 74KB

DATA Size: 1KB - Virtual size: 1KB

CODE
Size: 29KB - Virtual size: 29KB

.tls
Size: 512B - Virtual size: 403B

.data
Size: 75KB - Virtual size: 74KB

DATA
Size: 1KB - Virtual size: 1KB