aea5faadb930c21c9adc91f98018369a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

aea5faadb930c21c9adc91f98018369a_JaffaCakes118
Size

1.0MB
MD5

aea5faadb930c21c9adc91f98018369a
SHA1

4c2458e2ec63a6f596f83151f041a62860850ebd
SHA256

130e5841cbf1d8acb97a85b61cbf3d59ef14d7c2e5bd254264180a379779fca4
SHA512

d722b0d1042a2019984239f9976687f7af58917a688560b9f72aa46897496cce0e0f37aa704ac2bcf6dac3ac8354aecc395d3afaa585cd845dba8a8d56ef8dc4
SSDEEP

24576:ewHj2DH5AdQKhZgN8n0MtJ917IQhf25K1t9Nd0pgqvF:1j2DH5wvhZgNi5roaty5d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aea5faadb930c21c9adc91f98018369a_JaffaCakes118

Files

aea5faadb930c21c9adc91f98018369a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7563b673c86d32be5a42aaf9439ff2fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

FindWindowExW
SystemParametersInfoW
EnumDisplayMonitors
OffsetRect
CopyRect
GetClassInfoW
IsZoomed
CharLowerW
GetActiveWindow
EnableWindow
SetMenuDefaultItem
InvertRect
GetSysColor
AdjustWindowRectEx
GetScrollRange
BeginPaint
PostMessageW

kernel32

VirtualFree
InterlockedIncrement
InterlockedDecrement
GetStringTypeA
LCMapStringW
LCMapStringA
LoadLibraryA
RtlUnwind
GetProcAddress
GetVersion
VirtualAlloc
HeapFree
GetCurrentThreadId
GetLastError
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetFileType
GetSystemInfo
TlsAlloc
ExpandEnvironmentStringsW
GetTempPathW
CreateDirectoryW
FindFirstFileW
FindNextFileW
IsValidCodePage
GetCPInfo
MultiByteToWideChar
WideCharToMultiByte
GetStringTypeW
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
TlsSetValue
SetLastError
TlsGetValue
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
HeapReAlloc
WriteFile
InitializeCriticalSection
GetACP
GetOEMCP
HeapAlloc

setupapi

CM_Get_Device_IDW
CM_Get_Parent
CM_Get_DevNode_Status
CM_Get_DevNode_Registry_Property_ExW
SetupDiGetActualSectionToInstallW
SetupDiGetDeviceInstallParamsW
SetupOpenInfFileW
SetupCloseInfFile
SetupFindFirstLineW
SetupFindNextLine
SetupGetLineCountW
SetupGetStringFieldW
SetupDiCreateDeviceInfoList
SetupDiCreateDeviceInfoListExW
SetupDiGetDeviceInfoListDetailW
SetupDiGetDeviceInterfaceDetailW
SetupDiBuildDriverInfoList
SetupDiEnumDriverInfoW
SetupDiGetSelectedDriverW
SetupDiGetClassDevsW

uxtheme

EnableThemeDialogTexture
GetThemePartSize
DrawThemeBackground

wininet

InternetSetOptionW

oleaut32

SysReAllocStringLen
SysStringLen
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetElement
VariantCopyInd
VariantChangeTypeEx
VarR8FromStr
VarDateFromStr
VarBstrFromBool
GetErrorInfo

Sections

.text
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 7.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.n6t96
Size: 653KB - Virtual size: 653KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rv6oal
Size: 292KB - Virtual size: 291KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7563b673c86d32be5a42aaf9439ff2fb

Headers

File Characteristics

Imports

user32

kernel32

setupapi

uxtheme

wininet

oleaut32

Sections

.text Size: 55KB - Virtual size: 54KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 11KB - Virtual size: 7.4MB

.n6t96 Size: 653KB - Virtual size: 653KB

.rv6oal Size: 292KB - Virtual size: 291KB

.rsrc Size: 19KB - Virtual size: 19KB

.text
Size: 55KB - Virtual size: 54KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 11KB - Virtual size: 7.4MB

.n6t96
Size: 653KB - Virtual size: 653KB

.rv6oal
Size: 292KB - Virtual size: 291KB

.rsrc
Size: 19KB - Virtual size: 19KB