026c2d73e5b85546ebbba5ba1d3ffea2_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

026c2d73e5b85546ebbba5ba1d3ffea2_JaffaCakes118
Size

187KB
MD5

026c2d73e5b85546ebbba5ba1d3ffea2
SHA1

843969df9bb4c4fe20d0273715f402f52f9a1aa7
SHA256

d4716196dc3625a42a0e312ce512a8dde0af9539b70cc42c1e6288bbaadf9baa
SHA512

d45ff5272fd9c9ee2527dd860f005b5076b7d6966fd131ae3c19b5ea04325d89086b1d9c90fa0491362700911eb88de281c27e38d166c684d3a8c776fb1ce2e1
SSDEEP

3072:d0HqNulfLuVKO1qZyqMWC9gfAXAIcih0gtvw/JpJ/9CCzJd:qDoYO1IMWC9NAIf5aRpJ/N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
026c2d73e5b85546ebbba5ba1d3ffea2_JaffaCakes118

Files

026c2d73e5b85546ebbba5ba1d3ffea2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

66215cea55696cbca0e25e2b96c782de

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
GlobalAlloc
DeleteFileW
IsProcessorFeaturePresent
LocalAlloc
GetCalendarInfoW
WideCharToMultiByte
GetSystemDirectoryA
GetLocalTime
GetTempPathW
WaitForSingleObject
ReadFile
GetVersionExA
GetCurrentProcess
GetCurrentThread
GetThreadPriority
Sleep
ExitProcess
FindFirstFileA
GetCurrentDirectoryA
GetDateFormatW
IsDebuggerPresent
lstrcmpW
GlobalFree
GetCurrentThreadId
FindNextFileA
GetUserDefaultLangID
GetLastError
InterlockedCompareExchange
ReleaseSemaphore
ReleaseMutex
CloseHandle
DeleteCriticalSection
GetWindowsDirectoryA
EnumResourceNamesA
GetLocaleInfoA
GetProcAddress
GetThreadLocale
GetModuleFileNameA
GetSystemDefaultLCID
CreateMutexA
LoadLibraryA
GetModuleHandleA
QueryPerformanceCounter
CreateSemaphoreA
FreeLibrary
FindClose
GetDateFormatA
GetFileSize
InterlockedExchange
InitializeCriticalSection
SetCurrentDirectoryA
SetThreadPriority
LeaveCriticalSection
InterlockedIncrement
SetUnhandledExceptionFilter
GetFileTime
GetTimeFormatW
GlobalSize
EnterCriticalSection
TlsGetValue
GetTickCount
GlobalUnlock
UnhandledExceptionFilter
TerminateProcess
TlsFree
GlobalLock
GetTimeFormatA
MultiByteToWideChar
GetCurrentProcessId
GetEnvironmentVariableW
GetSystemInfo
GetSystemTimeAsFileTime
lstrlenW
GetProfileStringW
TlsSetValue
CreateFileA
RaiseException

advapi32

RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegQueryValueExA
RegSetValueExA

msimg32

AlphaBlend

user32

LoadCursorA
CreateWindowExA
MonitorFromPoint
RegisterClassA
ScrollWindowEx
WindowFromDC
LoadIconA
ReleaseDC
SetActiveWindow
DestroyWindow
GetClientRect
SetWindowPos
GetMonitorInfoA
OffsetRect
MonitorFromWindow
GetSystemMetrics
GetActiveWindow
GetDC
GetWindowRect
EnumDisplayMonitors
GetDesktopWindow
CharNextW
DefWindowProcA
UnregisterClassA

shlwapi

PathRemoveFileSpecA
PathAppendA

gdi32

RestoreDC
RealizePalette
GetGraphicsMode
ExtCreatePen
CombineRgn
SetROP2
SelectObject
GetDIBColorTable
GetWorldTransform
IntersectClipRect
CreateBrushIndirect
SetBrushOrgEx
LineTo
StartDocW
CreatePatternBrush
SetPolyFillMode
CreatePalette
DeleteDC
AbortDoc
GetObjectA
CreateICW
GetStockObject
StrokePath
SelectClipRgn
SetMiterLimit
PolylineTo
PolyBezierTo
SetWorldTransform
CloseFigure
EndPath
CreateDCW
GetRegionData
StretchBlt
GetClipBox
BeginPath
BitBlt
CreateRectRgn
ModifyWorldTransform
GetRgnBox
EqualRgn
SaveDC
ExtSelectClipRgn
SetStretchBltMode
Escape
GetCurrentObject
ExtEscape
CreateDIBSection
SelectPalette
EndDoc
CreatePolyPolygonRgn
GetViewportOrgEx
FillPath
ResetDCW
StretchDIBits
Rectangle
SelectClipPath
PatBlt
EndPage
SetDIBits
DeleteObject
GetDeviceCaps
StartPage
CreateBitmap
SetGraphicsMode
CreateCompatibleBitmap
CreateCompatibleDC
MoveToEx
OffsetRgn
PolyDraw

ole32

OleUninitialize
CoTaskMemAlloc
CoGetClassObject
CLSIDFromProgID
StgOpenStorageOnILockBytes
CoRetireServer
OleIsCurrentClipboard
CoCreateInstance
OleInitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoUninitialize
CoRevokeClassObject
CoInitialize
OleFlushClipboard
StgCreateDocfileOnILockBytes
CoTaskMemFree
CreateILockBytesOnHGlobal
CLSIDFromString

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66215cea55696cbca0e25e2b96c782de

Headers

File Characteristics

Imports

kernel32

advapi32

msimg32

user32

shlwapi

gdi32

ole32

Sections

.text Size: 104KB - Virtual size: 103KB

.rdata Size: 5KB - Virtual size: 5KB

.bss Size: 75KB - Virtual size: 75KB

.edata Size: 1024B - Virtual size: 240KB

.text
Size: 104KB - Virtual size: 103KB

.rdata
Size: 5KB - Virtual size: 5KB

.bss
Size: 75KB - Virtual size: 75KB

.edata
Size: 1024B - Virtual size: 240KB