15750997a6a36f7e8cd4c150c0661aff_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

15750997a6a36f7e8cd4c150c0661aff_JaffaCakes118
Size

692KB
MD5

15750997a6a36f7e8cd4c150c0661aff
SHA1

ad7c9beb13bff1a66c7d2c1a4378dc96fd4472d7
SHA256

67472ae6e7b041d1c073ab4e5cb74e58a13030dbf946c210dbfc66256c171a23
SHA512

97b485e70aa44b9c42a37eecf6a86811bfc9fc23357393e490511e511aa08e4686a75ae6bd07439e2b94a7972ea3a7a7a351eb7ef3d23674d9c05f311c2fe4d0
SSDEEP

12288:TVKSstfx85vDHsv1fTN88Xl73WYeJbxa4mO0ADvW7fN+nr2:RKSsKLa1ZfXp3WrhmOhQfNM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15750997a6a36f7e8cd4c150c0661aff_JaffaCakes118

Files

15750997a6a36f7e8cd4c150c0661aff_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e8a9875739d1f4e7eafebb0a5fbbf99f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Imports

wininet

DeleteIE3Cache

user32

SubtractRect
DestroyWindow
InsertMenuItemW
CallMsgFilter
TranslateAccelerator
ShowWindow
CreateWindowExA
DdeSetQualityOfService
DdeQueryStringW
DefWindowProcW
SendDlgItemMessageW
PaintDesktop
DispatchMessageW
IsCharAlphaW
GetMonitorInfoA
DialogBoxParamW
RegisterClassExA
IsWindowEnabled
SetCapture
GetWindowRgn
WinHelpW
CharToOemW
MessageBoxA
ShowOwnedPopups
SetCursor
RegisterClassA
DialogBoxParamA
OpenWindowStationW
ChangeDisplaySettingsA
ShowCursor
EnumWindows
CopyRect
RegisterWindowMessageW
GetMenuCheckMarkDimensions
MonitorFromRect
GetSysColorBrush
DlgDirSelectComboBoxExA
GetKeyState
ReplyMessage
IsWindow
EnumWindowStationsA
DialogBoxIndirectParamA
DdeDisconnectList
TabbedTextOutW
CreateWindowExW
GetMenuItemInfoW
GetScrollPos
GetScrollInfo
EnumPropsA
RegisterHotKey
CreateIconFromResourceEx
FindWindowExW
CreateMenu

comctl32

ImageList_Duplicate
ImageList_SetImageCount
ImageList_Merge
CreatePropertySheetPageW
ImageList_SetFlags
CreateUpDownControl
ImageList_DrawEx
InitCommonControlsEx
CreateToolbar
ImageList_EndDrag
ImageList_SetOverlayImage
GetEffectiveClientRect
ImageList_SetFilter
ImageList_SetDragCursorImage
ImageList_Read
ImageList_DragMove
DrawInsert
ImageList_GetFlags
CreatePropertySheetPage
CreateToolbarEx
ImageList_ReplaceIcon
ImageList_Replace

kernel32

GetLastError
HeapSize
WriteProfileStringA
GetUserDefaultLCID
ExpandEnvironmentStringsA
QueryPerformanceCounter
GetLocaleInfoW
VirtualFree
GetStartupInfoW
GetCommandLineW
SetHandleCount
CompareStringW
SetUnhandledExceptionFilter
GetLocaleInfoA
LCMapStringA
GetConsoleMode
SystemTimeToFileTime
FlushFileBuffers
GetCurrentProcessId
GetVersionExA
CloseHandle
CreateDirectoryExA
SetThreadAffinityMask
GetProcessHeap
DeleteCriticalSection
EnumSystemLocalesA
ExitProcess
EnumResourceLanguagesW
CreateFileMappingW
DebugBreak
GetTimeFormatA
IsBadWritePtr
GetCommandLineA
lstrcatW
lstrcpyA
HeapCreate
GetOEMCP
lstrcpyW
LCMapStringW
LockFile
AllocConsole
WriteConsoleOutputAttribute
InterlockedDecrement
GetCurrentProcess
CreateMutexA
GetStartupInfoA
HeapReAlloc
HeapFree
GetTickCount
SetFilePointer
ReadFile
TransmitCommChar
RtlZeroMemory
UnhandledExceptionFilter
SetThreadPriority
GetModuleHandleA
VirtualUnlock
GetPrivateProfileSectionA
WideCharToMultiByte
CompareStringA
FreeEnvironmentStringsA
VirtualAlloc
CommConfigDialogW
FreeEnvironmentStringsW
HeapAlloc
TlsFree
WriteFile
SetLastError
TlsGetValue
GetFullPathNameW
GetStringTypeA
RtlUnwind
GetSystemInfo
EnterCriticalSection
TerminateProcess
IsDebuggerPresent
GetModuleFileNameW
HeapDestroy
GetCurrentThread
InterlockedExchange
FileTimeToLocalFileTime
ContinueDebugEvent
GetSystemTimeAsFileTime
FindFirstFileExA
GetEnvironmentStrings
LockFileEx
OpenMutexA
GetStringTypeW
EnumCalendarInfoW
GetCPInfo
SetSystemTime
SetEnvironmentVariableA
GetTimeZoneInformation
IsValidLocale
VirtualProtect
InitializeCriticalSection
GetFileType
GetEnvironmentStringsW
GetProcAddress
IsValidCodePage
SetStdHandle
SetCriticalSectionSpinCount
MultiByteToWideChar
LeaveCriticalSection
FileTimeToSystemTime
LoadLibraryA
GetCurrentThreadId
GetStdHandle
TlsAlloc
SetThreadContext
GetNamedPipeHandleStateA
GetDateFormatA
VirtualQuery
WaitNamedPipeW
GetModuleFileNameA
GetACP
TlsSetValue

gdi32

SetMetaFileBitsEx
AnimatePalette
PolyTextOutA
CreateDIBSection
RoundRect
DeleteObject
SetViewportExtEx
CreateColorSpaceA
SelectObject
GetMetaRgn
EnumFontFamiliesW
AddFontResourceW
CreateFontW
Ellipse
PaintRgn
GdiPlayJournal
CreateMetaFileW
Pie

comdlg32

ReplaceTextA
ChooseColorA
GetSaveFileNameA

Sections

.text
Size: 184KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 268KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e8a9875739d1f4e7eafebb0a5fbbf99f

Headers

File Characteristics

PDB Paths

Imports

wininet

user32

comctl32

kernel32

gdi32

comdlg32

Sections

.text Size: 184KB - Virtual size: 180KB

.rdata Size: 268KB - Virtual size: 266KB

.data Size: 112KB - Virtual size: 140KB

.rsrc Size: 124KB - Virtual size: 123KB

.text
Size: 184KB - Virtual size: 180KB

.rdata
Size: 268KB - Virtual size: 266KB

.data
Size: 112KB - Virtual size: 140KB

.rsrc
Size: 124KB - Virtual size: 123KB