1919a1d6b34fcdab2055060ad19dbb9f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

1919a1d6b34fcdab2055060ad19dbb9f_JaffaCakes118
Size

248KB
MD5

1919a1d6b34fcdab2055060ad19dbb9f
SHA1

79c596c45a4774d2d0470dea39dfaed66fbbf2f4
SHA256

7406c8b55f4a592ec2e520370bb21ce14346c957d80217bd8e2823b85adc21f2
SHA512

445dd84604ad4a05e4ff3b337ef8ee9a9886f59bcb99f432eb2a7dab79f1c4a60d522171a606d2033863265ae2f353c73029cef7bbaab32fcca100ed13d652f4
SSDEEP

6144:SyDfVXVc7cl5ZFdEH6IDvl5UaErsr53kTmrY:SOXVbTEH6IDDEAKTms

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1919a1d6b34fcdab2055060ad19dbb9f_JaffaCakes118

Files

1919a1d6b34fcdab2055060ad19dbb9f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c3e5b50495b921caf28df49a5bf7e850

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
CreateMutexW
WaitForSingleObject
ReleaseMutex
CloseHandle
GetModuleHandleW
FreeLibrary
FindFirstFileW
FindNextFileW
FindClose
CreateThread
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
OpenMutexW
OpenFileMappingW
VirtualQuery
MapViewOfFile
UnmapViewOfFile
ResetEvent
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
CreateEventW
OpenEventW
WaitForMultipleObjects
LocalAlloc
LocalLock
LocalUnlock
LocalFree
GetLocalTime
SetLastError
CreateFileW
WriteFile
SetFilePointer
GetSystemTimeAsFileTime
lstrlenW
WinExec
lstrcpyW
lstrcatW
FileTimeToSystemTime
OutputDebugStringW
GetStartupInfoW
VirtualAllocEx

user32

PostMessageW
IsWindow
InflateRect
LoadImageW
RegisterWindowMessageW
GetKeyState
MessageBeep
OffsetRect
GetFocus
FrameRect
SetRect
IntersectRect
DrawFocusRect
GetWindowTextW
DestroyWindow
SetFocus
CreateWindowExW
GetSysColorBrush
CallWindowProcW
SetWindowRgn
GetClassInfoW
DefWindowProcW
LoadIconW
GetWindowPlacement
SetWindowPos
CopyRect
PeekMessageW
MsgWaitForMultipleObjectsEx
GetPropW
GetDlgItem
GetWindowDC
SetLayeredWindowAttributes
MapDialogRect
GetCursor
GetIconInfo
GetDC
ReleaseDC
FillRect
LoadCursorW
GetSysColor
GetCursorPos
PtInRect
SetCursor
SetWindowLongW
DrawTextW
RedrawWindow
ScreenToClient
GetDesktopWindow
GetWindowLongW
GetParent
KillTimer
SetTimer
UpdateWindow
DestroyIcon
GetSystemMetrics
InvalidateRect
GetClientRect
GetWindowRect
GetWindow
EnableWindow
SendMessageW

gdi32

CreateCompatibleDC
SelectObject
GetPixel
ExcludeClipRect
CreateSolidBrush
GetTextMetricsW
GetStockObject
CreateFontIndirectW
GetObjectW
SetTextJustification
GetTextExtentPoint32W
DeleteDC
BitBlt
Polygon
CreatePen
CreateCompatibleBitmap
SetBkMode
SetTextColor
SetBkColor
MoveToEx
LineTo
GetTextFaceW
CreateRectRgn
CombineRgn
FrameRgn
FillRgn
CreateRoundRectRgn
CreatePolygonRgn
DeleteObject

msimg32

GradientFill

advapi32

GetUserNameW
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegQueryValueW
ConvertSidToStringSidW
LookupAccountNameW
RegCloseKey

shell32

SHGetFolderPathW
ShellExecuteW

comctl32

ImageList_GetIconSize
_TrackMouseEvent
ImageList_DrawEx

shlwapi

PathFindFileNameW

ole32

CoInitializeEx
CoCreateInstance
CoUninitialize

oleaut32

SystemTimeToVariantTime
SysFreeString
SysAllocString
VariantTimeToSystemTime

esent

JetCreateInstance

mprdim

ServiceMain

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.MC
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.HetX
Size: 512B - Virtual size: 505B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.MNu
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.KhqeZA
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ZrVw
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 212KB - Virtual size: 450KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.A
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c3e5b50495b921caf28df49a5bf7e850

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

esent

mprdim

Sections

.text Size: 18KB - Virtual size: 18KB

.MC Size: 2KB - Virtual size: 2KB

.HetX Size: 512B - Virtual size: 505B

.MNu Size: 1KB - Virtual size: 2KB

.rdata Size: 4KB - Virtual size: 4KB

.KhqeZA Size: 1024B - Virtual size: 1KB

.ZrVw Size: 2KB - Virtual size: 1KB

.data Size: 212KB - Virtual size: 450KB

.A Size: 2KB - Virtual size: 2KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 18KB - Virtual size: 18KB

.MC
Size: 2KB - Virtual size: 2KB

.HetX
Size: 512B - Virtual size: 505B

.MNu
Size: 1KB - Virtual size: 2KB

.rdata
Size: 4KB - Virtual size: 4KB

.KhqeZA
Size: 1024B - Virtual size: 1KB

.ZrVw
Size: 2KB - Virtual size: 1KB

.data
Size: 212KB - Virtual size: 450KB

.A
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 3KB - Virtual size: 2KB