070a52df66151f961d0ae7d57c95c5c8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

070a52df66151f961d0ae7d57c95c5c8_JaffaCakes118
Size

211KB
MD5

070a52df66151f961d0ae7d57c95c5c8
SHA1

0719d5f4a5c6182a88b3ce5eba541ff8e3f7bc12
SHA256

05e3ef62404cf4fcec7da760b343bf85fd43b8eeca2a04e9fdfe385f36fe8b85
SHA512

678babf4d73cf4fa1b90aa0ae70b98b814819333d5d37c2463b31b779bd700f03414a48e20b93f77006479d7b46bf36d44649e091d4452a213a77f9343b3c59f
SSDEEP

3072:vGwPsm1VrwxOsf0juzv8j4P1Hr6krr4IEhx9QZe2gO9mG9UHA30Vt3E/vDjb:vG/iVkO20SFgBhxtW9mG9+Umt3Ezjb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
070a52df66151f961d0ae7d57c95c5c8_JaffaCakes118

Files

070a52df66151f961d0ae7d57c95c5c8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

728b5168c443fc8cea3c0c483ddbb8ff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLogicalDrives
GetProcAddress
GetCurrentThread
WaitForMultipleObjects
GlobalAlloc
OpenMutexA
InitializeCriticalSection
AddAtomA
CompareStringA
CopyFileA
IsValidLocale
lstrcpynA
OpenEventW
GetModuleHandleA
GetStartupInfoA
GetSystemDefaultLCID
GetACP
GetCalendarInfoW
OpenWaitableTimerA
Sleep
GetSystemDefaultLangID
CreateSemaphoreW
ExpandEnvironmentStringsW
lstrlenA
GetDateFormatA
CreateMailslotW
SystemTimeToFileTime
BeginUpdateResourceA
GetExpandedNameW
SearchPathA
DosDateTimeToFileTime
GetWindowsDirectoryW
GetEnvironmentStringsW
GetStringTypeA
QueryPerformanceCounter

user32

GetDlgItemTextW
DialogBoxParamA
LoadMenuIndirectW
GetCapture
GetClassInfoW
IsIconic
LoadBitmapA
GetDC
PeekMessageW
GetMenuState
SetWindowTextW
GetWindowRect
UpdateWindow
GetForegroundWindow
DialogBoxIndirectParamA
ShowWindow
EnumClipboardFormats
AdjustWindowRect
SetCursorPos
ReleaseDC
InsertMenuA
CreateWindowExA
ActivateKeyboardLayout
LoadIconW
DrawTextA
DialogBoxIndirectParamW

gdi32

FillPath
UnrealizeObject
SetDIBits
CreateScalableFontResourceW
GetTextFaceA
CreateFontW
SelectClipRgn
AnimatePalette

advapi32

RegOpenKeyExA
RegOpenKeyW
RegDeleteKeyA
RegOpenKeyW

shlwapi

SHRegGetBoolUSValueW
PathIsUNCServerShareA
PathRemoveExtensionA
PathGetDriveNumberW
IntlStrEqWorkerA
PathMakePrettyA
StrCmpNIW
UrlCombineW

comctl32

DrawStatusText
CreateMappedBitmap
ImageList_Write

inetcomm

MimeOleGenerateCID
MimeOleSetBodyPropW
EssKeyExchPreferenceDecodeEx
CreateSMTPTransport
MimeOleSMimeCapInit
MimeOleSMimeCapGetHashAlg
MimeEditIsSafeToRun
MimeOleParseMhtmlUrl
EssSecurityLabelEncodeEx
MimeOleGetRelatedSection
MimeOleGetFileInfoW
EssReceiptRequestEncodeEx
MimeOleCreateSecurity
MimeOleFileTimeToInetDate
MimeOleSMimeCapGetEncAlg
MimeOleGetInternat
MimeOleSMimeCapAddCert
EssSignCertificateDecodeEx

oledlg

OleUIObjectPropertiesW
OleUIConvertW
OleUIPasteSpecialW
OleUIConvertA
OleUIPromptUserA
OleUIAddVerbMenuW
OleUIEditLinksA
OleUIPasteSpecialA

Sections

.qYS
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.jvNc
Size: 2KB - Virtual size: 405KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bCq
Size: 3KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gMFODl
Size: 3KB - Virtual size: 329KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 109KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ifpDc
Size: 3KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Ox
Size: 2KB - Virtual size: 474KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 740B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

728b5168c443fc8cea3c0c483ddbb8ff

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shlwapi

comctl32

inetcomm

oledlg

Sections

.qYS Size: 11KB - Virtual size: 11KB

.jvNc Size: 2KB - Virtual size: 405KB

.bCq Size: 3KB - Virtual size: 18KB

.gMFODl Size: 3KB - Virtual size: 329KB

.data Size: 109KB - Virtual size: 216KB

.ifpDc Size: 3KB - Virtual size: 207KB

.Ox Size: 2KB - Virtual size: 474KB

.rsrc Size: 73KB - Virtual size: 73KB

.reloc Size: 1024B - Virtual size: 740B

.qYS
Size: 11KB - Virtual size: 11KB

.jvNc
Size: 2KB - Virtual size: 405KB

.bCq
Size: 3KB - Virtual size: 18KB

.gMFODl
Size: 3KB - Virtual size: 329KB

.data
Size: 109KB - Virtual size: 216KB

.ifpDc
Size: 3KB - Virtual size: 207KB

.Ox
Size: 2KB - Virtual size: 474KB

.rsrc
Size: 73KB - Virtual size: 73KB

.reloc
Size: 1024B - Virtual size: 740B