07fad773aa70d2d5235ddf74b31981c6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

07fad773aa70d2d5235ddf74b31981c6_JaffaCakes118
Size

660KB
MD5

07fad773aa70d2d5235ddf74b31981c6
SHA1

b9f52ee5ee718859dde05394a5a1e8278e6a1514
SHA256

63a9b37ae1d011f9ae4441c8c78c5ed2468b87afe3fdc963e4dbd398c204feb8
SHA512

302ba14773881960793bc23ead9f345ce33a1b61847a5036b075b2ceba126dcc4af90d92eb9860cdf6b540cb94b3e1dd41204ed4fe82f3b693485af264475729
SSDEEP

12288:O0DV6PHW98Hrvu61l++xFFrJu1eAteroBe422QEAH8YC73V4:O0DY/vHrvB7Pa1eA0rMvAw73V4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07fad773aa70d2d5235ddf74b31981c6_JaffaCakes118

Files

07fad773aa70d2d5235ddf74b31981c6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3a8b33c484d5021c96185e5b6178eda2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleRegGetUserType
CoUninitialize
CoCreateInstance
OleDuplicateData
CoRegisterClassObject
DoDragDrop
CLSIDFromString
StringFromCLSID
CoTaskMemAlloc
ReleaseStgMedium
RevokeDragDrop
OleGetClipboard
OleFlushClipboard
CoInitialize
CoTaskMemFree
OleSetClipboard
CreateStreamOnHGlobal
CLSIDFromProgID
CoInitializeSecurity
CoRevokeClassObject
OleLockRunning
OleRun
OleRegEnumVerbs
OleRegGetMiscStatus
CoGetClassObject
CoTaskMemRealloc
CreateOleAdviseHolder
StgCreateDocfile
OleUninitialize

shell32

DragAcceptFiles
DragFinish
SHGetDesktopFolder
DragQueryFileA
ord155
Shell_NotifyIconA

shlwapi

PathFindFileNameW
PathStripToRootW
PathCombineW
PathFindExtensionW
StrStrIW

advapi32

LookupPrivilegeValueA
RegDeleteValueA
RegOpenKeyExA
RegQueryInfoKeyA
RegCreateKeyExA
RegCloseKey

kernel32

HeapDestroy
InterlockedDecrement
GetModuleFileNameA
RaiseException
GetModuleHandleA
GetProcAddress
TlsFree
IsBadCodePtr
GetLastError
ExitProcess
SetLastError
GetCommandLineW
GetCurrentProcessId
FatalAppExitA
FlushFileBuffers
CloseHandle
HeapAlloc
TerminateProcess
GetStringTypeW
IsBadWritePtr
LoadLibraryA
GetEnvironmentStrings
TlsAlloc
UnhandledExceptionFilter
DeleteCriticalSection
FreeEnvironmentStringsW
GetStartupInfoW
VirtualQuery
OpenMutexW
TlsGetValue
GetModuleFileNameW
GetCPInfo
LCMapStringA
GetCommandLineA
GetCurrentThreadId
SetFilePointer
GetEnvironmentStringsW
TlsSetValue
ReadFile
InterlockedIncrement
GetCurrentThread
HeapCreate
VirtualFree
InitializeCriticalSection
GetModuleHandleW
LCMapStringW
HeapFree
EnterCriticalSection
GetLocalTime
SetHandleCount
RtlUnwind
GetTimeZoneInformation
LeaveCriticalSection
HeapReAlloc
GetSystemTimeAsFileTime
GetTickCount
CompareStringA
CompareStringW
VirtualAlloc
MultiByteToWideChar
GetStdHandle
GetStartupInfoA
FreeEnvironmentStringsA
IsBadReadPtr
GetSystemTime
SetConsoleCtrlHandler
QueryPerformanceCounter
SetEnvironmentVariableA
WriteFile
CreateMutexW
WideCharToMultiByte
GetFileType
SetUnhandledExceptionFilter
SetStdHandle
GetStringTypeA
GetCurrentProcess
GetVersion
InterlockedExchange

oleaut32

LoadTypeLi

user32

GetClassNameW
GetCursorPos
ShowWindow
SetParent
GetDC
EndDialog
wsprintfA
GetDlgCtrlID
SetCursor
ReleaseDC
PeekMessageW
DrawEdge
GetSysColorBrush
TrackMouseEvent
RegisterClipboardFormatW
GetWindow
GetActiveWindow
IsWindowVisible
GetClientRect
DeferWindowPos
GetForegroundWindow
GetTopWindow
UnionRect
IsMenu
KillTimer
DestroyWindow
EnableWindow
GetParent
SetWindowRgn
UnregisterClassW
WindowFromPoint
MoveWindow
TrackPopupMenu
MessageBoxW
IsDialogMessageW
UnhookWindowsHookEx
SetWindowPlacement
IsClipboardFormatAvailable
RegisterClassExW
UnpackDDElParam
FillRect
EnableScrollBar
SetForegroundWindow
DrawMenuBar
IsChild
CloseClipboard
GetNextDlgGroupItem
UpdateWindow
IsWindowEnabled
MessageBeep
ReleaseCapture
GetMessagePos
OffsetRect
GetSystemMetrics
SetWindowPos
CopyIcon
PostThreadMessageW
ChildWindowFromPoint
OpenClipboard
IsIconic
DeleteMenu
SetClipboardData
SetFocus
SetTimer
CheckMenuItem
SetCursorPos
DefWindowProcW
SetMenu
InflateRect
SetMenuItemInfoW
TrackPopupMenuEx
GetMenuItemCount
CallNextHookEx
LoadAcceleratorsW
GetSysColor
CreateWindowExW
PostQuitMessage
GetWindowLongW
CreatePopupMenu
BeginPaint
GetMenuState
GetAsyncKeyState
GetWindowPlacement
GetDesktopWindow
GetDlgItem
GetKeyState
DrawIconEx
EndPaint
AdjustWindowRectEx
GetSubMenu
RegisterClassW

version

VerLanguageNameA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

comdlg32

PrintDlgA
GetOpenFileNameA

comctl32

ImageList_Destroy
ImageList_SetBkColor
DestroyPropertySheetPage
ImageList_GetImageCount

Sections

.text
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 448KB - Virtual size: 445KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a8b33c484d5021c96185e5b6178eda2

Headers

File Characteristics

Imports

ole32

shell32

shlwapi

advapi32

kernel32

oleaut32

user32

version

comdlg32

comctl32

Sections

.text Size: 76KB - Virtual size: 73KB

.rdata Size: 448KB - Virtual size: 445KB

.data Size: 100KB - Virtual size: 103KB

.rsrc Size: 32KB - Virtual size: 28KB

.text
Size: 76KB - Virtual size: 73KB

.rdata
Size: 448KB - Virtual size: 445KB

.data
Size: 100KB - Virtual size: 103KB

.rsrc
Size: 32KB - Virtual size: 28KB