4696d51d054e4583457c97e737c0f96d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4696d51d054e4583457c97e737c0f96d_JaffaCakes118
Size

1.2MB
MD5

4696d51d054e4583457c97e737c0f96d
SHA1

7534718ad3f029c75c57fae582fb8e0202a7ea26
SHA256

b75c6ab26460644961bc20d278b1958f4811c47b6ef976f92a1deab7920047f8
SHA512

cf78815930db8b6ea95e9ebe9fd1930c49930887ae4370a2ddc9052bff8cf81f9634c1b695a8bf3fddb8c75c41c5c8418cc74e5d628df2b56ccf730797d47df5
SSDEEP

12288:Qb7orLFhLHyqo+xl4bxB/w/iNkuBYN6xO7mTkUXFbHk7+C5g3O9xSfj37ZeL43oF:qS3P4VpwwkErc7mTp1rey3OSLtBagEt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4696d51d054e4583457c97e737c0f96d_JaffaCakes118

Files

4696d51d054e4583457c97e737c0f96d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f7d6c1a776eae107edcdc954d0cfc69d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnumDisplayMonitors
GetScrollInfo
IsDialogMessageW
LoadImageW
OffsetRect
UnionRect
CopyRect
GetCursor
EnableScrollBar
ShowScrollBar
RedrawWindow
InvalidateRect
BeginPaint
ReleaseDC
GetDC
AppendMenuW
GetSubMenu
DestroyMenu
GetSystemMenu
GetMenu
IsWindowEnabled
EnableWindow
MsgWaitForMultipleObjects
GetNextDlgTabItem
CheckDlgButton
GetDlgItemInt
CreateDialogParamW
MoveWindow
IsWindow
CreateWindowExW
GetClassInfoExW
CallWindowProcW
PostMessageW
PeekMessageW
DrawFrameControl
RegisterWindowMessageW
GetKeyboardLayoutList

kernel32

HeapSize
GetCurrentProcess
GetCurrentThreadId
GetLastError
EnterCriticalSection
LeaveCriticalSection
WaitForSingleObject
GetFileType
FindClose
CloseHandle
HeapFree
GetStartupInfoW
OutputDebugStringW
CreateFileW
FindFirstFileW
GetACP
GetOEMCP
WideCharToMultiByte
HeapReAlloc
HeapAlloc
HeapDestroy
VirtualAlloc
LocalAlloc
GlobalUnlock
GlobalLock
GetProcAddress
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
WriteConsoleW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetModuleHandleW
IsValidCodePage
GetCPInfo
IsDebuggerPresent
IsProcessorFeaturePresent
LoadLibraryExW
RtlUnwind
GetStringTypeW
LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
GetSystemInfo
GetCommandLineW
SetLastError
EncodePointer
DecodePointer
ExitProcess
GetModuleHandleExW
MultiByteToWideChar
GetProcessHeap
GetStdHandle
DeleteCriticalSection
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId

crypt32

CryptBinaryToStringW
CertFreeCertificateChain
CertGetCertificateChain
CryptProtectData
CertNameToStrW
CertFindExtension
CryptHashCertificate
CertControlStore
CertAddStoreToCollection
CertFreeCTLContext
CertAddEncodedCertificateToStore
CertFreeCRLContext
CertGetCertificateContextProperty
CertCreateCertificateContext
CertOpenStore
CryptEnumOIDInfo
CryptDecodeObject
CryptDecodeObjectEx
CryptEncodeObjectEx

mpr

WNetEnumResourceW

comctl32

ImageList_GetIcon
DestroyPropertySheetPage
PropertySheetW
InitCommonControlsEx
FlatSB_SetScrollInfo
CreateStatusWindowW
ImageList_GetDragImage
ImageList_DragMove
ImageList_DragEnter
ImageList_BeginDrag
ImageList_Copy
ImageList_LoadImageW
CreatePropertySheetPageW
ImageList_Remove
ImageList_DrawIndirect
ImageList_DrawEx
ImageList_Replace
ImageList_GetBkColor
ImageList_Add
ImageList_SetImageCount
ImageList_Destroy
ImageList_Create

comdlg32

ChooseColorW
ReplaceTextW
GetSaveFileNameW

Sections

.text
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 753KB - Virtual size: 752KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 6.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 362KB - Virtual size: 361KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f7d6c1a776eae107edcdc954d0cfc69d

Headers

File Characteristics

Imports

user32

kernel32

crypt32

mpr

comctl32

comdlg32

Sections

.text Size: 65KB - Virtual size: 64KB

.rdata Size: 753KB - Virtual size: 752KB

.data Size: 10KB - Virtual size: 6.6MB

.rsrc Size: 362KB - Virtual size: 361KB

.text
Size: 65KB - Virtual size: 64KB

.rdata
Size: 753KB - Virtual size: 752KB

.data
Size: 10KB - Virtual size: 6.6MB

.rsrc
Size: 362KB - Virtual size: 361KB