1b18e4d2a1fcd024b0270af94538fa05_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

1b18e4d2a1fcd024b0270af94538fa05_JaffaCakes118
Size

556KB
MD5

1b18e4d2a1fcd024b0270af94538fa05
SHA1

677f700093152bc1fbccb7b9bf3fec57805e35e2
SHA256

882d1909f70be9b1c0c2ea06bebba57a2dfcc98fe550f76c7ca06491476a3051
SHA512

d444815273ebee0f9e245f2733c69924ce51f72e9c289fa6453d0d75e3183faf3a7614f861679670aaa5c0d2df46bc20f500fa5cbb1bdd2844a80c24f2c2f887
SSDEEP

12288:Pr9AH9DnBNZ8PxBuuBu+Vw10oa0O2+6ONnbymPrE1uoFpoLqtHJm/:PxY9TBaBuX+VFoa0ILdbymPrr6zJm/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b18e4d2a1fcd024b0270af94538fa05_JaffaCakes118

Files

1b18e4d2a1fcd024b0270af94538fa05_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c96b00775bf4ca6ef87b60fff7b8f4b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

CreateStatusWindow
ImageList_DrawIndirect
CreateToolbarEx
ImageList_LoadImageW
ImageList_SetFilter
ImageList_GetDragImage
ImageList_GetImageCount
CreateStatusWindowW
ImageList_DragLeave
CreateUpDownControl
MakeDragList
InitCommonControlsEx
CreatePropertySheetPageW
ImageList_AddIcon
ImageList_DragEnter
ImageList_Write
DrawStatusTextW
ImageList_ReplaceIcon
ImageList_GetImageRect
DestroyPropertySheetPage
DrawStatusText

gdi32

CreateHalftonePalette
DeleteDC
GetObjectW
SelectObject
CreateDCA
GetDeviceCaps

kernel32

OpenEventW
TlsFree
VirtualAlloc
SetStdHandle
RtlUnwind
DeleteCriticalSection
FindNextFileA
IsValidLocale
TerminateProcess
IsValidCodePage
InterlockedExchange
GetCPInfo
VirtualProtect
GetTickCount
GetTimeZoneInformation
HeapAlloc
VirtualFree
HeapReAlloc
SetLastError
GetModuleHandleA
GetStartupInfoA
GetACP
DebugBreak
LCMapStringA
InitializeCriticalSection
SetHandleCount
TlsSetValue
GetStringTypeW
MultiByteToWideChar
SetThreadContext
GetProcAddress
HeapDestroy
FreeEnvironmentStringsA
LoadLibraryW
TransmitCommChar
WritePrivateProfileStructA
GetEnvironmentStringsW
TlsAlloc
ReadFile
CreateMutexW
lstrcmpiW
GetModuleFileNameA
GetLocaleInfoA
CompareStringA
GetVersionExA
GetLocaleInfoW
GlobalAlloc
GetStringTypeA
CloseHandle
EnumSystemLocalesA
HeapFree
GetEnvironmentStrings
CreateMutexA
CompareStringW
QueryPerformanceCounter
GetSystemInfo
GetCurrentProcess
GetCurrentThreadId
GetStdHandle
GetCurrentThread
LeaveCriticalSection
ExitProcess
LCMapStringW
GetCurrentProcessId
OpenMutexA
GetDateFormatA
WriteConsoleOutputA
OpenSemaphoreW
IsDebuggerPresent
GetLastError
EnterCriticalSection
GetUserDefaultLCID
GetDiskFreeSpaceA
CreateFileMappingA
VirtualQuery
HeapCreate
TlsGetValue
GetOEMCP
GetTimeFormatA
GetSystemTimeAsFileTime
FindFirstFileExA
GetCommandLineA
GetCurrentDirectoryW
LoadLibraryA
SetFilePointer
GetFileType
OpenWaitableTimerA
CreateWaitableTimerW
FlushFileBuffers
WriteFile
SetVolumeLabelA
WaitForMultipleObjects
ReadConsoleOutputCharacterA
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetConsoleTitleW
WideCharToMultiByte
SetEnvironmentVariableA
IsBadWritePtr
HeapSize
OpenWaitableTimerW
CreateMailslotA

user32

GetMessageTime
CreateAcceleratorTableA
CharPrevW
GetWindow
AttachThreadInput
DdeInitializeA
GetMenuDefaultItem
EnumWindowStationsA
DdeCreateStringHandleW
TrackMouseEvent
SetWindowContextHelpId
ShowWindow
UnhookWinEvent
GetCursorInfo
TranslateMDISysAccel
GetCapture
SendNotifyMessageA
MessageBoxA
SendMessageTimeoutW
CharPrevA
PeekMessageW
GetClassWord
SetUserObjectInformationW
wvsprintfW
OemToCharA
DdeGetLastError
OpenInputDesktop
DrawAnimatedRects
GetMessageExtraInfo
IsMenu
OpenClipboard
DlgDirSelectComboBoxExW
DeferWindowPos
FindWindowA
CallWindowProcW
LoadAcceleratorsW
FrameRect
LoadBitmapA
IsCharAlphaA
LoadKeyboardLayoutW
DrawFocusRect
GetMenuInfo
UpdateWindow
InflateRect
GetCaretPos
LookupIconIdFromDirectoryEx
InsertMenuA
GetWindowInfo
BringWindowToTop
ExcludeUpdateRgn
FlashWindowEx
ValidateRgn
ReleaseDC
ShowScrollBar
OpenWindowStationA
MonitorFromPoint
LoadIconW
SetScrollInfo
RegisterClassExW
EndPaint
MonitorFromRect
GetDlgItemTextW
GetScrollBarInfo
EnumDisplaySettingsExA
EditWndProc
DefWindowProcW
IsDialogMessageA
DrawIconEx
SetActiveWindow
TileChildWindows
UnpackDDElParam
RegisterHotKey
SetDlgItemInt
CreateDialogIndirectParamA
GetOpenClipboardWindow
ValidateRect
PaintDesktop
EnumDesktopsW
SendMessageA
EnumDisplayDevicesW
CreateWindowExA
CreateWindowExW
ToAsciiEx
DdeNameService
RegisterClassA
RegisterClassExA
SetCapture
EnableScrollBar
GetDlgItem
MessageBoxW
SetUserObjectSecurity
CheckMenuRadioItem
BeginDeferWindowPos
GetUpdateRgn
DestroyWindow
GetThreadDesktop

shell32

ExtractIconExW

Sections

.text
Size: 168KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c96b00775bf4ca6ef87b60fff7b8f4b3

Headers

File Characteristics

Imports

comctl32

gdi32

kernel32

user32

shell32

Sections

.text Size: 168KB - Virtual size: 166KB

.rdata Size: 260KB - Virtual size: 258KB

.data Size: 108KB - Virtual size: 134KB

.rsrc Size: 16KB - Virtual size: 13KB

.text
Size: 168KB - Virtual size: 166KB

.rdata
Size: 260KB - Virtual size: 258KB

.data
Size: 108KB - Virtual size: 134KB

.rsrc
Size: 16KB - Virtual size: 13KB