1bc5c5ad94835ab5b8b561444a46c168_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1bc5c5ad94835ab5b8b561444a46c168_JaffaCakes118
Size

93KB
MD5

1bc5c5ad94835ab5b8b561444a46c168
SHA1

002fa14c358987f0a8eac2a1fafeeee4c873853c
SHA256

85361dba926c7099b59c537be5f08f144efa143532d56d6353a43149f5de8a40
SHA512

9666faf21613df760f07bf3b1a2ae8064dbd15471487bc5b78316255a777f1462d18f843063556a29cf0d5c8eaa10a2b426c13865c65792e13c1e324a833e016
SSDEEP

1536:VDplf2QPzXXxkGvT2Pl174e/2FbFZfdDIhy//s:9plfvzHxkuG4+y3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1bc5c5ad94835ab5b8b561444a46c168_JaffaCakes118

Files

1bc5c5ad94835ab5b8b561444a46c168_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6abd35f7f539ac95aac5e4e1b52a3445

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegOpenKeyExA
RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegOpenKeyA
RegQueryValueExA
RegSetValueExA

kernel32

CloseHandle
CopyFileA
CreateDirectoryA
CreateFileA
CreateProcessA
ExitProcess
FindClose
FindFirstFileA
FindNextFileA
FlushFileBuffers
GetCommandLineA
GetCurrentDirectoryA
GetEnvironmentStringsA
GetFileType
GetLastError
GetLocalTime
GetModuleHandleA
GetStartupInfoA
GetSystemInfo
GetVersionExA
GlobalAlloc
GlobalFree
ReadFile
SetCurrentDirectoryA
SetEndOfFile
SetErrorMode
SetFilePointer
SetLastError
Sleep
WaitForSingleObject
WriteFile
Beep
CompareFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
FreeLibrary
GetComputerNameA
GetCurrentProcess
GetDateFormatA
GetDiskFreeSpaceExA
GetDriveTypeA
GetFileTime
GetModuleFileNameA
GetPriorityClass
GetProcAddress
GetShortPathNameA
GetSystemDirectoryA
GetTempPathA
GetTimeFormatA
GetVolumeInformationA
GetWindowsDirectoryA
LoadLibraryA
LocalFileTimeToFileTime
OpenFile
SetFileTime
SetPriorityClass
SystemTimeToFileTime

oleaut32

SysAllocStringByteLen
SysFreeString
SysStringByteLen

user32

ClientToScreen
CreateDialogIndirectParamA
CreateDialogParamA
CreateMenu
CreatePopupMenu
CreateWindowExA
DeleteMenu
DestroyWindow
DialogBoxIndirectParamA
DispatchMessageA
DrawMenuBar
EnableWindow
EndDialog
GetClientRect
GetDialogBaseUnits
GetDlgItem
GetMenu
GetMenuItemInfoA
GetWindowLongA
GetWindowRect
GetWindowTextA
InsertMenuItemA
IsDialogMessageA
IsWindow
LoadImageA
MapDialogRect
MessageBeep
MessageBoxA
PeekMessageA
PostQuitMessage
ScreenToClient
SendMessageA
SetCursor
SetFocus
SetMenu
SetMenuItemInfoA
SetWindowLongA
SetWindowPos
SetWindowTextA
ShowWindow
TrackPopupMenu
TranslateMessage
BeginPaint
DefWindowProcA
DialogBoxParamA
DrawTextA
EndPaint
FillRect
GetDC
GetSysColor
LoadCursorA
RegisterClassA
ReleaseDC

wsock32

accept
bind
closesocket
connect
gethostbyaddr
gethostbyname
gethostname
getservbyname
listen
recv
recvfrom
select
send
sendto
setsockopt
socket
WSAAsyncSelect
WSACleanup
WSAGetLastError
WSAStartup

gdi32

CreateFontIndirectA
CreateSolidBrush
GetObjectA
GetTextExtentPoint32A
MoveToEx
SelectObject
SetBkMode
SetTextColor

mpr

WNetGetUserA

shell32

ShellExecuteA
SHBrowseForFolderA
SHGetPathFromIDListA

comdlg32

PrintDlgA
GetOpenFileNameA
GetSaveFileNameA

comctl32

ImageList_ReplaceIcon
ImageList_Remove
ImageList_GetIcon
ImageList_LoadImageA

ole32

CoTaskMemFree

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.link
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6abd35f7f539ac95aac5e4e1b52a3445

Headers

File Characteristics

Imports

advapi32

kernel32

oleaut32

user32

wsock32

gdi32

mpr

shell32

comdlg32

comctl32

ole32

Sections

.text Size: 69KB - Virtual size: 69KB

.data Size: 9KB - Virtual size: 9KB

.link Size: 4KB - Virtual size: 4KB

.rsrc Size: 6KB - Virtual size: 5KB

.rloc Size: 3KB - Virtual size: 2KB

.text
Size: 69KB - Virtual size: 69KB

.data
Size: 9KB - Virtual size: 9KB

.link
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 6KB - Virtual size: 5KB

.rloc
Size: 3KB - Virtual size: 2KB