1581a48e7b84c8f948b68367494e35ec_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1581a48e7b84c8f948b68367494e35ec_JaffaCakes118
Size

71KB
MD5

1581a48e7b84c8f948b68367494e35ec
SHA1

a0f84dc2abf8ebe58741a52354663111ad0ac361
SHA256

a9f3c19d64b7f1dd950ce6930e87f24c1f46d65449a150f6818c0ecb6d0fcf3b
SHA512

fff9c96e6aef33c90dc4eb07190dc86ecc3f11c551ac2920d9988727e8e00b0006e57f761c95769c11d2f3c75bb831f1311828bd9d43a9676712949f76d9d1aa
SSDEEP

768:APQ6VqjiPOYbvNSgIk9mBfzMTywxhGUD78aB/UIgFugceue6UwT:APQjiPOYb8k96zMZxhF7eJKU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1581a48e7b84c8f948b68367494e35ec_JaffaCakes118

Files

1581a48e7b84c8f948b68367494e35ec_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0f52e871c66b4d132dd2f414acde651c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenWaitableTimerW
SetConsoleInputExeNameW
BeginUpdateResourceW
WriteProfileSectionA
FatalExit
GetPrivateProfileStructA
GetMailslotInfo
GetFileAttributesExW
GetConsoleAliasExesLengthW
TerminateThread
SetStdHandle
GetBinaryTypeW
GetThreadTimes
LeaveCriticalSection
_lcreat
GetModuleHandleA
EnumSystemLocalesW
ExpungeConsoleCommandHistoryA
VirtualQueryEx
WriteProfileStringA
GlobalDeleteAtom
GetExitCodeProcess
GlobalHandle
GetConsoleAliasExesW
VirtualAlloc
SetConsoleInputExeNameA
ExitThread

user32

OemToCharW
DlgDirListComboBoxW
FlashWindow
GetWindowTextLengthA
EnumDesktopWindows
IsRectEmpty
ToUnicode
GetCapture
EnumDisplayDevicesA
PrivateExtractIconsA
SetSysColorsTemp
UpdatePerUserSystemParameters
LoadLocalFonts
SetCursorPos
SetClipboardData

gdi32

PolyTextOutW
SetBkMode
GdiGetCharDimensions
CreateBrushIndirect
GdiFlush
cGetTTFFromFOT
EnumEnhMetaFile
GetMiterLimit
CopyMetaFileA
GetMetaFileA
CreateICA
CreatePolygonRgn
PolyPolyline
ScaleViewportExtEx
EndPath
GetWorldTransform
GetPaletteEntries
GetEnhMetaFilePixelFormat
GetCharABCWidthsFloatW
GetTextColor
MaskBlt
CopyEnhMetaFileA
UpdateColors
GetGraphicsMode
FlattenPath
Ellipse
GetCharABCWidthsFloatA

ole32

OleCreateEmbeddingHelper
GetDocumentBitStg
StringFromGUID2
CoRegisterPSClsid
OleCreateLinkFromDataEx
HMENU_UserFree
CoRevokeClassObject
HMENU_UserMarshal
UtGetDvtd32Info
OleCreateLink
CLIPFORMAT_UserFree
CoCreateInstance
StgOpenStorageOnILockBytes
SetDocumentBitStg
CoGetClassObject
HMENU_UserUnmarshal
MkParseDisplayName
OleGetIconOfFile
CoFileTimeToDosDateTime
WdtpInterfacePointer_UserSize
OleCreateFromDataEx
StgGetIFillLockBytesOnILockBytes
WdtpInterfacePointer_UserMarshal
WriteClassStm
HGLOBAL_UserMarshal
ReadStringStream
CoGetCallContext
OleNoteObjectVisible
HBRUSH_UserFree
OleIsRunning
GetErrorInfo
EnableHookObject

oleaut32

VarUI2FromDec
VarI4FromBool
BSTR_UserUnmarshal
SystemTimeToVariantTime
LHashValOfNameSysA
VarI2FromUI1
DllUnregisterServer
VariantTimeToDosDateTime
VarUI4FromUI2
SafeArrayLock
LPSAFEARRAY_Size
VarUI4FromDec
VarDateFromI1
LPSAFEARRAY_UserSize
VarI4FromUI2
VARIANT_UserUnmarshal
VarI4FromDisp
OleLoadPicture
VarR4FromI4
VarBoolFromR8
SafeArrayCopyData
VarBoolFromI4
LPSAFEARRAY_Marshal
LPSAFEARRAY_UserFree
VarR8FromBool
VarUI2FromUI1
LoadTypeLib
VarI4FromUI4
VarI1FromUI4
VarR8FromI4

Sections

.text
Size: 31KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 36KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0f52e871c66b4d132dd2f414acde651c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

oleaut32

Sections

.text Size: 31KB - Virtual size: 44KB

.data Size: 3KB - Virtual size: 8KB

.idata Size: 36KB - Virtual size: 64KB

.text
Size: 31KB - Virtual size: 44KB

.data
Size: 3KB - Virtual size: 8KB

.idata
Size: 36KB - Virtual size: 64KB