1addf38e532b3147cd03a7d346ba930c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

1addf38e532b3147cd03a7d346ba930c_JaffaCakes118
Size

183KB
MD5

1addf38e532b3147cd03a7d346ba930c
SHA1

21a7cf0949743d22b859787cde21bf217464bb3f
SHA256

95c7ea37c2c3b5e2b661cea459d910f6f61f65f302c899abf9e27382aa4b9d1f
SHA512

47b48944597349b204a8ce9235a0e29030a9cc6eb5e844a4db51a7ddb837458397f0efe6d42681e747746fddcf7470c5e9d88c82facf70ae4f3ee93490a0bfcf
SSDEEP

3072:nUKuV+P0J5imJAFFLTqtyDSeTmgTneiQdOGrXEX07QSL1JEeZOW8e0MbaZdpT9o:nUzVMEQF5RSO7e6+O07QSL1JENJLT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1addf38e532b3147cd03a7d346ba930c_JaffaCakes118

Files

1addf38e532b3147cd03a7d346ba930c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a6143f4cde73efc46ff998a51bc3e6fa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

comctl32

ImageList_Create
ImageList_DrawEx
ImageList_Add
ImageList_GetIconSize
ImageList_Destroy

kernel32

CreateFiber
FileTimeToSystemTime
GetFileType
GetFileTime
GetSystemTime
SetCommConfig
FileTimeToLocalFileTime
FlushFileBuffers
GetVersionExW
FindResourceExA
GetUserDefaultLangID
GetProfileStringW
EnumResourceNamesW
GetFileAttributesA
FlushFileBuffers
GetVolumeInformationW
LocalAlloc
LockFile
IsDBCSLeadByte
SetEndOfFile
UnlockFile
VerLanguageNameW
CompareStringW
SearchPathW
GetSystemDirectoryW

shlwapi

PathIsRootW
PathStripToRootW
PathIsURLW
PathCanonicalizeW
PathIsRelativeW
PathCombineW

ole32

StringFromCLSID
StgOpenStorageOnILockBytes
OleGetAutoConvert
GetHGlobalFromILockBytes
RegisterDragDrop
OleRegGetUserType
StgCreateDocfileOnILockBytes
CoTaskMemFree
CoFreeUnusedLibraries
CLSIDFromProgID
ProgIDFromCLSID
OleDuplicateData
RevokeDragDrop
CoGetMalloc
CoGetClassObject
CLSIDFromString
ReleaseStgMedium
CoTaskMemAlloc
CoCreateGuid
GetHGlobalFromStream
CreateStreamOnHGlobal
OleRun
CoCreateInstance
CreateILockBytesOnHGlobal

comdlg32

GetFileTitleA

gdi32

PlgBlt
AnimatePalette
FlattenPath
CreatePen
SetTextColor
StrokePath
GetBitmapBits
SetStretchBltMode
PolyBezier
GetPath
GetBkColor
RoundRect
ExtCreatePen
CreateFontIndirectA
SetDIBits

user32

RegisterClassW
DefWindowProcW
SetScrollRange
MonitorFromWindow
DestroyCursor
GetSysColorBrush
UnhookWindowsHookEx
CallNextHookEx
ToAscii
SetClipboardData
WinHelpW
SetWindowPos
DestroyIcon
ChildWindowFromPoint
IsClipboardFormatAvailable
ClipCursor
DrawEdge
EmptyClipboard
SetWindowsHookExW
GetSysColor

rpcrt4

RpcBindingSetAuthInfoA
NdrClientCall
RpcStringBindingComposeA
RpcBindingFromStringBindingA
RpcStringFreeA

Sections

.text
Size: 155KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a6143f4cde73efc46ff998a51bc3e6fa

Headers

File Characteristics

Imports

comctl32

kernel32

shlwapi

ole32

comdlg32

gdi32

user32

rpcrt4

Sections

.text Size: 155KB - Virtual size: 155KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 23KB - Virtual size: 23KB

.lib Size: 512B - Virtual size: 80KB

.text
Size: 155KB - Virtual size: 155KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 23KB - Virtual size: 23KB

.lib
Size: 512B - Virtual size: 80KB