8aead2022fe8134ee6b1a559f6f732f0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8aead2022fe8134ee6b1a559f6f732f0_JaffaCakes118
Size

391KB
MD5

8aead2022fe8134ee6b1a559f6f732f0
SHA1

15fbe9bdabaa4125fc3ab5cbfb6ad59fd4dbedb3
SHA256

66c058fce4e470c53dedebb219331c240e252f9acf894f41cc73f2cb91c79c91
SHA512

ef672f22be7a66cc5ac85888c7f30d0cefe8c47db6fbf1add056e1815fb27443aaf989153f66961e022e40c55f420cdebce1bbef22c148ae7d906c95459b7bdd
SSDEEP

12288:2GQuiyY5sZhmBZ4bsnRXpeZfC89Gms0pDiCUwH7IuhxS:2keZUDsUs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8aead2022fe8134ee6b1a559f6f732f0_JaffaCakes118

Files

8aead2022fe8134ee6b1a559f6f732f0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7fedfca9bc26477e66eed8139e192a1f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
CreateFileW
SetFilePointerEx
SetStdHandle
GetStringTypeW
HeapQueryInformation
HeapSize
HeapReAlloc
HeapFree
LCMapStringW
HeapCreate
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
LoadLibraryA
CloseHandle
ReadFile
WriteFile
GetFileSize
GetLastError
HeapAlloc
LocalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetProcAddress
GetProcessHeap
WriteConsoleW
OutputDebugStringA
GetFileType
LoadLibraryExW
CreateThread
WaitForSingleObjectEx
OutputDebugStringW
ReadConsoleW
GetConsoleMode
GetConsoleCP
FlushFileBuffers
FreeEnvironmentStringsW
GetCurrentThreadId
FreeLibrary
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
WideCharToMultiByte
AreFileApisANSI
ExitProcess
GetSystemInfo
HeapValidate
SetEndOfFile
GetStdHandle
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
EncodePointer
DecodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
MultiByteToWideChar
GetModuleFileNameW
GetModuleHandleExW
RaiseException
RtlUnwind
GetCommandLineA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetModuleHandleW

user32

GetParent
SendMessageA
CreateWindowExA
IsWindow
DestroyWindow
OpenClipboard
CloseClipboard
GetClipboardData
InsertMenuA
GetMenuCheckMarkDimensions
EndPaint
SetScrollInfo
EnumWindows
FindWindowA
SetWindowTextA
SetWindowLongA
GetClientRect
BeginPaint

gdi32

GetObjectA
SetBkColor
SelectObject
Rectangle
DeleteDC
CreateCompatibleDC
BitBlt
Polyline

advapi32

SetNamedSecurityInfoW
SetEntriesInAclA
FreeSid
AllocateAndInitializeSid

shell32

SHBrowseForFolderA

ole32

GetHGlobalFromStream
OleDuplicateData
OleCreateStaticFromData
CoInitializeEx
CreateStreamOnHGlobal

oleaut32

OleSavePictureFile
OleCreatePictureIndirect
OleLoadPicture

msvfw32

ICCompressorChoose

avifil32

AVIStreamRelease

msacm32

acmDriverID
acmDriverDetailsA

winmm

mciSendCommandA

wintrust

CryptCATOpen
CryptCATPersistStore
CryptCATPutAttrInfo

winhttp

WinHttpOpen

sensapi

IsNetworkAlive

Exports

Exports

Take

Sections

.text
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7fedfca9bc26477e66eed8139e192a1f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

msvfw32

avifil32

msacm32

winmm

wintrust

winhttp

sensapi

Exports

Exports

Sections

.text Size: 196KB - Virtual size: 195KB

.rdata Size: 72KB - Virtual size: 72KB

.data Size: 7KB - Virtual size: 15KB

.text Size: 5KB - Virtual size: 5KB

.rsrc Size: 109KB - Virtual size: 108KB

.text
Size: 196KB - Virtual size: 195KB

.rdata
Size: 72KB - Virtual size: 72KB

.data
Size: 7KB - Virtual size: 15KB

.text
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 109KB - Virtual size: 108KB