1b910fcfe87c19c28ebd4b6b23775ef0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1b910fcfe87c19c28ebd4b6b23775ef0_JaffaCakes118
Size

256KB
MD5

1b910fcfe87c19c28ebd4b6b23775ef0
SHA1

d6994eb84c710a9fb23154b5b3ff93539ad83f40
SHA256

2398bd1bb640346bb02e740a469f7893a45b7a24b4fe8f823ac4482ab5f006fc
SHA512

b306f4cffccb788b00116765efdb14e98cda37a187bf0b5a33e506f8a8a375b37888a0df482cddafe6725a1e48f207ea5938c35e74fb56c54da307125a3609b4
SSDEEP

6144:6bX3jo7V9Lk3jBCbFll6kFQVhMcU4nf2:6T87VtkFC3YNhMV4ne

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b910fcfe87c19c28ebd4b6b23775ef0_JaffaCakes118

Files

1b910fcfe87c19c28ebd4b6b23775ef0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fbd1668c3302873adc95421698da45c9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
WriteFile
VirtualProtect
GlobalGetAtomNameW
CreateDirectoryW
DeleteCriticalSection
GetSystemTimeAdjustment
GetProcessTimes
SetProcessWorkingSetSize
GetStartupInfoA
VirtualAlloc
DuplicateHandle
GetModuleHandleA

user32

LoadIconW
DrawCaption
GetDlgItemTextW
LookupIconIdFromDirectory
SetWindowsHookExW
RegisterClipboardFormatA
GetClassNameA
EnumDisplayDevicesW
CallWindowProcW
BroadcastSystemMessageW
CreateWindowExA
GetKeyboardLayoutNameW
VkKeyScanA
GetClassLongW
SetSysColors
EndPaint
RegisterWindowMessageA
EnumDisplaySettingsExW
MessageBeep
UpdateWindow
GetSysColor
DefDlgProcA
GetSubMenu
GetWindow
CloseDesktop
ChangeClipboardChain
MapVirtualKeyA
SendMessageCallbackW
GetKeyboardLayoutNameA
GetWindowPlacement
IsIconic
LoadAcceleratorsA
CreateCursor
GetParent
UnionRect
SetClassLongA
BringWindowToTop
RemovePropA
ReplyMessage
GetCursor
FrameRect
CloseWindowStation
wsprintfA
GetWindowInfo

gdi32

GetTextExtentExPointA
GetEnhMetaFilePaletteEntries
SetBrushOrgEx

comdlg32

PageSetupDlgA
CommDlgExtendedError
GetOpenFileNameW
GetOpenFileNameA

advapi32

RegEnumKeyA
RegGetKeySecurity
RegCreateKeyA
SetSecurityInfo
RegNotifyChangeKeyValue
ChangeServiceConfigW
InitializeSid
RegEnumValueW
NotifyChangeEventLog
RegSaveKeyW
SetSecurityDescriptorGroup
CryptSignHashW
OpenSCManagerA
RegCloseKey
RegDeleteValueA
RegOpenKeyW
QueryServiceLockStatusW
CryptCreateHash
GetSecurityDescriptorOwner
GetSidLengthRequired

shell32

Shell_NotifyIconW

ole32

OleSaveToStream
CoGetObject
CoSwitchCallContext
OleFlushClipboard
OleCreateFromData
OleBuildVersion
CoResumeClassObjects
StgSetTimes
OleSetContainedObject

comctl32

PropertySheetW
ImageList_DrawEx

msvcrt

_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_exit
_except_handler3
_controlfp

Sections

.text
Size: 236KB - Virtual size: 233KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fbd1668c3302873adc95421698da45c9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

comctl32

msvcrt

Sections

.text Size: 236KB - Virtual size: 233KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 9KB

.text
Size: 236KB - Virtual size: 233KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 9KB