7b4507d2c03f5c2d65af1b3aff2b0407_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7b4507d2c03f5c2d65af1b3aff2b0407_JaffaCakes118
Size

2.1MB
MD5

7b4507d2c03f5c2d65af1b3aff2b0407
SHA1

dea0cc5e168d27440b46e6bd6989eda56f28cfdd
SHA256

fa14765a133db7ff26ba04d1273ec2b029bfbeb905171787afa4cfcdcb9f7c85
SHA512

e538f936e55fc6cb411f1cf98ac141b8eb703e26fa5a90d54bb5c0fa802af0c3925a127b579f77e6cc5556b27cddc64a848a5dbfb9d64e082841cb508e47ac1a
SSDEEP

24576:+MW+rnXys8D3UI8r4Mz3XPjZHq0M6lPzbST1P0eK86jLLTLLLLC:+MWcXP8DkK41DMuzm6v86jLLTLLLLC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7b4507d2c03f5c2d65af1b3aff2b0407_JaffaCakes118

Files

7b4507d2c03f5c2d65af1b3aff2b0407_JaffaCakes118
.exe windows:5 windows x86 arch:x86

140a971c9ab68bd2f7eca632a78e4276

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToSystemTime
GetNamedPipeInfo
CreateMutexW
LoadLibraryW
GetModuleHandleW
FindResourceW
FindResourceExW
GetSystemDirectoryW
CreateTimerQueue
IsValidCodePage
CloseHandle
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetSystemRegistryQuota
LCMapStringW
HeapSize
HeapReAlloc
HeapAlloc
GetStringTypeW
OutputDebugStringW
RtlUnwind
LoadLibraryExW
HeapFree
LeaveCriticalSection
EnterCriticalSection
GetSystemInfo
GetFileSize
VirtualAlloc
GlobalLock
GetCPInfo
GetOEMCP
GetACP
IsDebuggerPresent
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
CreateFileW

user32

GetPropW
DrawEdge
RegisterClassW
DdeAddData
DdeCreateDataHandle
DdeQueryConvInfo
MapDialogRect
LoadStringW
LoadIconW
DestroyCursor
CharNextW
GetClassWord
IsRectEmpty
GetSysColor
ClientToScreen
FindWindowW
ShowScrollBar
GetScrollRange
ScrollWindowEx
InvalidateRect
CreatePopupMenu
SetMenu
DestroyAcceleratorTable
KillTimer
MsgWaitForMultipleObjects
GetActiveWindow
SetFocus

advapi32

RegOpenKeyExW
RegDeleteValueW
RegCloseKey
RegQueryValueExW

ole32

CoGetMalloc
StringFromCLSID
CoTaskMemAlloc

shell32

SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetFileInfoW
Shell_NotifyIconW
CommandLineToArgvW
DragAcceptFiles
DragFinish

Sections

.text
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 558KB - Virtual size: 7.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.httu7
Size: 847KB - Virtual size: 847KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.8teo
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sfcoo
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 346KB - Virtual size: 345KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

140a971c9ab68bd2f7eca632a78e4276

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

shell32

Sections

.text Size: 77KB - Virtual size: 77KB

.data Size: 558KB - Virtual size: 7.1MB

.idata Size: 3KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.httu7 Size: 847KB - Virtual size: 847KB

.8teo Size: 163KB - Virtual size: 163KB

.sfcoo Size: 136KB - Virtual size: 135KB

.rsrc Size: 346KB - Virtual size: 345KB

.text
Size: 77KB - Virtual size: 77KB

.data
Size: 558KB - Virtual size: 7.1MB

.idata
Size: 3KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.httu7
Size: 847KB - Virtual size: 847KB

.8teo
Size: 163KB - Virtual size: 163KB

.sfcoo
Size: 136KB - Virtual size: 135KB

.rsrc
Size: 346KB - Virtual size: 345KB