229107fbf46cc55165c274d0cec2b26d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

229107fbf46cc55165c274d0cec2b26d_JaffaCakes118
Size

456KB
MD5

229107fbf46cc55165c274d0cec2b26d
SHA1

470296a80459053e3a62f6074d24d3674554edca
SHA256

c497f09fbff0bf10f670348a8a94e28e11897bb8c7a40625f3bc399a6ca1c918
SHA512

29dcaa160d14b4a1b5687ece226f30d3108aa1cce7866ba9a779c56129936693e07d2accdb5029885d70d02467ce6581f8f6d8fc8c16dfdc92d50a2b9ab6cf8f
SSDEEP

6144:YP7MJs51uefe3vErHDtUrfxQvIMMO5AlBSF1bduF8ahJIwL9LZAg:YiKMB3u2rpQvD5ACluF8SJXL1+g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
229107fbf46cc55165c274d0cec2b26d_JaffaCakes118

Files

229107fbf46cc55165c274d0cec2b26d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

48c0dfe3c54df07b08e639e5a6b94ac7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\wnweooeeor.PDB

Imports

user32

SetScrollInfo
RegisterClassA
SetWindowPos
EndPaint
DefWindowProcW
GetShellWindow
GetForegroundWindow
BroadcastSystemMessage
CharToOemBuffA
DialogBoxIndirectParamW
GetScrollRange
RegisterClassExA
GetMonitorInfoA
BeginPaint
GetDoubleClickTime
OpenIcon
wvsprintfA
DispatchMessageW
DlgDirListComboBoxW
MessageBoxW
CallWindowProcW
GetTitleBarInfo
ShowWindow
ValidateRect
GetWindowRect
DestroyWindow
SendIMEMessageExA
CreateWindowExA
InvertRect
LoadMenuIndirectW
ActivateKeyboardLayout
ShowCursor
CreateIconFromResourceEx

comctl32

ImageList_GetIconSize
ImageList_Draw
ImageList_DragEnter
DrawStatusText
ImageList_SetFlags
ImageList_DragLeave
ImageList_GetImageRect
ImageList_LoadImageA
CreatePropertySheetPageA
ImageList_GetFlags
ImageList_SetDragCursorImage
CreateStatusWindowW
DestroyPropertySheetPage
ImageList_DragShowNolock
ImageList_BeginDrag
ImageList_AddIcon
ImageList_SetOverlayImage
ImageList_Read
DrawStatusTextW
ImageList_GetIcon
ImageList_Destroy
InitCommonControlsEx
ImageList_SetImageCount
ImageList_SetIconSize
ImageList_DrawEx
ImageList_SetBkColor

kernel32

SetStdHandle
GetStringTypeExW
OpenMutexA
EnterCriticalSection
SetConsoleTitleA
VirtualFree
GetModuleHandleA
LeaveCriticalSection
GetCurrentProcessId
GetEnvironmentStrings
CompareStringW
InitializeCriticalSectionAndSpinCount
OutputDebugStringW
GetStdHandle
EnumSystemCodePagesW
IsValidCodePage
GetTimeZoneInformation
FindResourceW
IsValidLocale
FileTimeToDosDateTime
CloseHandle
GetEnvironmentStringsW
FindNextChangeNotification
Sleep
GetOEMCP
TlsGetValue
GetProcAddress
LoadLibraryA
GetCurrencyFormatW
WideCharToMultiByte
SetFilePointer
GetCPInfo
GlobalLock
TlsFree
VirtualAlloc
GetCurrentProcess
DeleteCriticalSection
SetComputerNameW
UnhandledExceptionFilter
GetSystemTimeAsFileTime
ExpandEnvironmentStringsW
OpenFileMappingW
InterlockedDecrement
WriteConsoleInputW
GlobalSize
GetConsoleMode
TerminateProcess
FindNextFileA
GetShortPathNameA
VirtualQuery
WriteConsoleW
SetConsoleCtrlHandler
InterlockedIncrement
GetCurrentThreadId
ReadConsoleInputW
WaitForMultipleObjects
QueryPerformanceCounter
CreateFileA
SetThreadLocale
GetUserDefaultLCID
FoldStringA
GetCurrentThread
HeapCreate
FreeResource
GetModuleFileNameA
GetCommandLineW
FreeEnvironmentStringsA
GetConsoleOutputCP
WriteProfileSectionW
GetVersionExA
UnmapViewOfFile
GetSystemDirectoryA
GetTickCount
FlushViewOfFile
IsBadWritePtr
UnlockFile
HeapAlloc
CreateMutexA
FormatMessageA
MultiByteToWideChar
ReleaseMutex
RtlUnwind
IsDebuggerPresent
TryEnterCriticalSection
SetThreadContext
WriteProfileStringW
GetTimeFormatA
LockResource
ReadFileEx
SetUnhandledExceptionFilter
GetLocaleInfoA
WaitForSingleObjectEx
LCMapStringW
GetLastError
CreateMailslotA
FlushFileBuffers
GetProfileIntA
HeapDestroy
lstrcmp
TlsSetValue
ExitProcess
GetStringTypeW
CompareStringA
EnumSystemLocalesA
SetEnvironmentVariableA
HeapReAlloc
lstrcpynA
ReadFile
GetCurrentDirectoryA
GetStartupInfoA
GetPrivateProfileSectionNamesW
GlobalReAlloc
GetLocaleInfoW
lstrcpyn
HeapFree
GetACP
SetWaitableTimer
TlsAlloc
lstrcmpiA
FindFirstFileW
GetDateFormatA
VirtualUnlock
SetLastError
FreeEnvironmentStringsW
EnumResourceLanguagesA
GetCommandLineA
InitializeCriticalSection
LocalFlags
WriteConsoleA
InterlockedExchange
HeapSize
GetConsoleCP
LCMapStringA
FindFirstFileExW
EnumDateFormatsExW
GetStringTypeA
SetHandleCount
LoadLibraryExA
WriteFile
GetModuleHandleW
GetFileType
FreeLibrary

Sections

.text
Size: 148KB - Virtual size: 145KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

48c0dfe3c54df07b08e639e5a6b94ac7

Headers

File Characteristics

PDB Paths

Imports

user32

comctl32

kernel32

Sections

.text Size: 148KB - Virtual size: 145KB

.rdata Size: 132KB - Virtual size: 128KB

.data Size: 100KB - Virtual size: 104KB

.rsrc Size: 72KB - Virtual size: 69KB

.text
Size: 148KB - Virtual size: 145KB

.rdata
Size: 132KB - Virtual size: 128KB

.data
Size: 100KB - Virtual size: 104KB

.rsrc
Size: 72KB - Virtual size: 69KB