1623482647e6a20b7c910ead380a6458_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1623482647e6a20b7c910ead380a6458_JaffaCakes118
Size

203KB
MD5

1623482647e6a20b7c910ead380a6458
SHA1

7bbb2fda1e9942a19a1668b328ab4dd4c2cf07f4
SHA256

820769b492c0a133e3a03de96907818ad4f872abd86af9d9b08f8cb5ea6515dd
SHA512

4e74c393120d64d68eaf2db7ec539f21913d6511aaec63028c800b32c722e5fd1235a14d88a8903fc08676c820868bcc86be0b194467a3a7e4c0b6844373e4b3
SSDEEP

3072:pjpWXaKyNCj4LXSSJaJOP1H2r8BUJXwqB3SkkZTctWvPxBo:aX1o2jJOP+8YwqA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1623482647e6a20b7c910ead380a6458_JaffaCakes118

Files

1623482647e6a20b7c910ead380a6458_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4d06f8303e6b226d2152a1660a8f98be

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
rand
wcschr
log
malloc
strlen
pow

ole32

CoCreateGuid
GetHGlobalFromStream
CoRevokeClassObject

gdi32

GetCurrentPositionEx
GetClipBox
GetDIBits
GetDCOrgEx
GetDIBColorTable

kernel32

GetProcAddress
VirtualAllocEx
GlobalAlloc
VirtualQuery
MulDiv
ExitThread
GetCommandLineW
WriteFile
LocalAlloc
lstrcpynA
GetVersionExA
VirtualAlloc
MoveFileA
lstrcmpA
LoadLibraryA
LocalReAlloc
LocalFree
WideCharToMultiByte
lstrcatA
ExitProcess
lstrcpyA
HeapDestroy
WaitForSingleObject
GetCommandLineA
GetModuleHandleA
lstrcmpiA
SizeofResource
GetOEMCP
LoadLibraryExA
VirtualFree
MoveFileExA
lstrlenA
IsBadReadPtr

shlwapi

SHSetValueA
SHDeleteValueA
PathGetCharTypeA
PathIsDirectoryA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerInstallFileA

comdlg32

GetFileTitleA
ChooseColorA
GetSaveFileNameA

advapi32

RegQueryInfoKeyA
RegQueryValueExA
RegEnumKeyA

shell32

SHGetSpecialFolderLocation
DragQueryFileA
SHGetDiskFreeSpaceA
SHGetFileInfoA

comctl32

ImageList_Read
ImageList_DrawEx
ImageList_Create
ImageList_Draw
ImageList_Remove
ImageList_Add
ImageList_Destroy
ImageList_Write
ImageList_DragShowNolock

user32

GetWindowTextA
GetTopWindow
GetWindowDC
GetWindow
KillTimer
GetWindowLongA
GetSubMenu
GetWindowPlacement
InsertMenuA
GetWindowThreadProcessId
GetWindowRect
IsWindowVisible
GetSysColor
IsChild
IsIconic
IsWindowEnabled
IsZoomed
InvalidateRect
InsertMenuItemA
IsWindow
IsDialogMessageW
GetSystemMenu
GetScrollRange
IntersectRect
InflateRect
IsWindowUnicode
IsRectEmpty
GetWindowLongW
IsDialogMessageA
GetSysColorBrush

Sections

.text
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 773B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc8
Size: 1024B - Virtual size: 1022B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc2
Size: 1024B - Virtual size: 525B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc6
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc9
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc5
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d06f8303e6b226d2152a1660a8f98be

Headers

File Characteristics

Imports

msvcrt

ole32

gdi32

kernel32

shlwapi

version

comdlg32

advapi32

shell32

comctl32

user32

Sections

.text Size: 69KB - Virtual size: 68KB

DATA Size: 1024B - Virtual size: 773B

.rsrc8 Size: 1024B - Virtual size: 1022B

.rsrc2 Size: 1024B - Virtual size: 525B

.rsrc6 Size: 1KB - Virtual size: 1KB

.rsrc9 Size: 124KB - Virtual size: 123KB

.rsrc5 Size: 4KB - Virtual size: 3KB

.rsrc Size: 1024B - Virtual size: 976B

.text
Size: 69KB - Virtual size: 68KB

DATA
Size: 1024B - Virtual size: 773B

.rsrc8
Size: 1024B - Virtual size: 1022B

.rsrc2
Size: 1024B - Virtual size: 525B

.rsrc6
Size: 1KB - Virtual size: 1KB

.rsrc9
Size: 124KB - Virtual size: 123KB

.rsrc5
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 1024B - Virtual size: 976B