4bc43ecce6627aa7498fafad9ee54d5b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4bc43ecce6627aa7498fafad9ee54d5b_JaffaCakes118
Size

1.2MB
MD5

4bc43ecce6627aa7498fafad9ee54d5b
SHA1

d4883f33bf22aa64e4d7ccde4e75016d6b747a0d
SHA256

3d4d4c39569e420ce7150551c91ece3aa124548da679cd9cad48c7736c9ed9cc
SHA512

bed6952d3c0d5e83f32e2014301581460b022585affa243f8c59d0ccfa0588c416743f278051b81337236c86c58ea9c154a44dbb7a04e8c9501b1f9b102956fb
SSDEEP

24576:MSKf4VXp1hb8EsA0D5T3YWbPYMQ85WBc62:MSKgL15ED5rNbAq62

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4bc43ecce6627aa7498fafad9ee54d5b_JaffaCakes118

Files

4bc43ecce6627aa7498fafad9ee54d5b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6bfa53560a5f80051b1fdc87655598dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Write
ImageList_GetIconSize
ImageList_SetIconSize
ImageList_GetImageInfo
CreateToolbarEx
ImageList_DragEnter
FlatSB_GetScrollInfo
FlatSB_SetScrollProp
InitializeFlatSB
ImageList_Copy
CreatePropertySheetPageW
ImageList_Draw
ImageList_GetBkColor
ImageList_SetImageCount
ImageList_GetImageCount
_TrackMouseEvent

oleaut32

SafeArrayGetLBound
SysFreeString
SafeArrayRedim
SafeArrayGetUBound
VariantClear
VarDateFromStr
VarCyFromStr
VarNot
LoadTypeLi
SetErrorInfo
GetErrorInfo
SafeArrayPutElement

advapi32

RegDeleteValueW
RegEnumKeyExW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegCloseKey

shell32

SHGetSpecialFolderPathW
ShellAboutW
ExtractIconExW
SHFileOperationW
SHGetFileInfoW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHChangeNotify
DragQueryFileW

kernel32

LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
CloseHandle
WriteConsoleW
HeapSize
GetStringTypeW
HeapReAlloc
HeapAlloc
OutputDebugStringW
LoadLibraryExW
IsProcessorFeaturePresent
IsDebuggerPresent
GetCPInfo
RtlUnwind
GetProcAddress
GlobalLock
GlobalUnlock
VirtualAlloc
GetCurrentProcessId
ExitProcess
GetCurrentThreadId
GetLastError
SystemTimeToFileTime
CreateEventW
CreateProcessW
GetStartupInfoW
MultiByteToWideChar
CompareStringW
GetUserDefaultLCID
GetOEMCP
GetACP
IsValidCodePage
HeapFree
LeaveCriticalSection
EnterCriticalSection
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
CreateFileW
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
QueryPerformanceCounter
WriteFile
GetModuleFileNameW
DeleteCriticalSection
GetCommandLineW
SetLastError
EncodePointer
DecodePointer
GetModuleHandleExW
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType

user32

IsZoomed
DrawFocusRect
AdjustWindowRectEx
DestroyMenu
DeleteMenu
DrawIcon
SetCursor
GetDC
SetScrollPos
GetScrollRange
SetPropW
SetWindowTextW
GetWindowTextLengthW
DestroyWindow
FillRect
GetParent
FindWindowW
GetWindow
DestroyCursor
CreateIcon
LoadImageW
CharPrevW
GetKeyboardLayoutList

userenv

EnterCriticalPolicySection
LeaveCriticalPolicySection
LoadUserProfileW

Sections

.text
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 752KB - Virtual size: 752KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 7.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 362KB - Virtual size: 361KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6bfa53560a5f80051b1fdc87655598dd

Headers

File Characteristics

Imports

comctl32

oleaut32

advapi32

shell32

kernel32

user32

userenv

Sections

.text Size: 75KB - Virtual size: 75KB

.rdata Size: 752KB - Virtual size: 752KB

.data Size: 12KB - Virtual size: 7.2MB

.rsrc Size: 362KB - Virtual size: 361KB

.text
Size: 75KB - Virtual size: 75KB

.rdata
Size: 752KB - Virtual size: 752KB

.data
Size: 12KB - Virtual size: 7.2MB

.rsrc
Size: 362KB - Virtual size: 361KB