2692378f0fd6d7c660e1e29ed65ec088_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2692378f0fd6d7c660e1e29ed65ec088_JaffaCakes118
Size

324KB
MD5

2692378f0fd6d7c660e1e29ed65ec088
SHA1

339d58c328d1a18a89dd2f0d2a890f269df49574
SHA256

b9f9f1d4867008ff2cf9f7b687fcbb52b828b15fbf75a2223d02ea8f4017228f
SHA512

d5c10ae9cd6e7ec58926c0418a78bfa5ba6dcb5668243ed2df45577f691c68cfa2460e5bbaa02557f7e272e18b7fa0a01280eda9799a74f615e1e22214e60e3e
SSDEEP

6144:0GZiMjUwLdBib2xqi9k5MIA9lBL3GVewk5n2HVLe+X0pOlCo11P959MWb:0GpjJdBiSEyl1Wzin2HhdX0pOk01P97b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2692378f0fd6d7c660e1e29ed65ec088_JaffaCakes118

Files

2692378f0fd6d7c660e1e29ed65ec088_JaffaCakes118
.exe windows:4 windows x86 arch:x86

784b38473174c7365989badc46ed5a02

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetWaitableTimer
DisconnectNamedPipe
CreateIoCompletionPort
SystemTimeToTzSpecificLocalTime
LoadLibraryExW
GetStartupInfoA
GetLocaleInfoW
VirtualAlloc
GetProcessTimes
WriteFileEx
SetConsoleMode
GetTapePosition
GetFileAttributesExW
WriteConsoleInputW
LCMapStringA
EnumSystemCodePagesA
GetProfileIntA
GetConsoleScreenBufferInfo
WriteFile
SetLastError
GetStringTypeA
EndUpdateResourceA
GetSystemDefaultLCID
GetDriveTypeA
GetTempFileNameW
GetCommandLineA
VirtualAllocEx
OpenFile
GetThreadSelectorEntry
lstrcatA
RemoveDirectoryA
SetHandleInformation
GetVolumeInformationW
SetUnhandledExceptionFilter
CreateEventA
TlsSetValue
SetFileTime
GetProcessVersion
GetModuleHandleW
VirtualQuery
SetErrorMode
ReadFile
FatalAppExitA
CreateDirectoryA
FindFirstChangeNotificationW
GlobalHandle
CreateWaitableTimerW
FillConsoleOutputAttribute
CreateDirectoryW
GetCurrentProcess
GetProfileStringW
SetPriorityClass
FlushInstructionCache
GetFileTime
CreateProcessW
WideCharToMultiByte
SetConsoleTextAttribute
EnumResourceNamesA
_lwrite
GetProcessHeap
CloseHandle
ReadConsoleOutputW
FindNextChangeNotification
_lcreat
WriteTapemark
HeapReAlloc
Beep
GetDriveTypeW
FormatMessageW
LocalReAlloc
GlobalMemoryStatus
SetFileAttributesA
CancelIo
GetPrivateProfileIntA
FileTimeToLocalFileTime
GetModuleHandleA
SystemTimeToFileTime
GetFileSize
GetSystemTime
GetPrivateProfileSectionNamesA
GetCurrentThread
GetPrivateProfileStringA
HeapAlloc
ScrollConsoleScreenBufferA
SetConsoleOutputCP
GlobalFlags
SetVolumeLabelA
SetLocalTime
EnumTimeFormatsW
GetFileInformationByHandle
FillConsoleOutputCharacterW
SetThreadExecutionState
GetVersionExA
lstrlenA
VirtualProtect
GetUserDefaultLCID
ExitProcess

user32

GetMessageExtraInfo
CheckMenuRadioItem
RegisterClipboardFormatW
AdjustWindowRectEx
EnumClipboardFormats
GetSysColor
LookupIconIdFromDirectory
CheckRadioButton
ChangeDisplaySettingsExA
DefMDIChildProcW
MsgWaitForMultipleObjectsEx
keybd_event
GrayStringW
SetMenuDefaultItem
InsertMenuItemW
MonitorFromPoint
CharToOemW
MessageBoxIndirectW
ChangeDisplaySettingsW
GetWindowTextA
GetTopWindow
SetKeyboardState
DrawEdge
CloseDesktop

gdi32

CreateDCA
SetGraphicsMode
DPtoLP
WidenPath
GetRgnBox
GetDCOrgEx
PolyDraw
ResizePalette
TextOutA
UpdateColors
GetEnhMetaFileDescriptionA
AbortDoc
DeleteObject
GetCharWidthW
PlayEnhMetaFile
ModifyWorldTransform
SetTextColor
Polyline
AddFontResourceA
BitBlt
DeleteEnhMetaFile

advapi32

IsValidAcl
CryptEncrypt
SetServiceStatus
RegQueryInfoKeyA
MapGenericMask
DeregisterEventSource
RegQueryInfoKeyW
OpenSCManagerW
GetFileSecurityW
CryptSetKeyParam
RegLoadKeyA

shell32

SHAddToRecentDocs
SHLoadInProc
ShellExecuteExA
SHFileOperationW
Shell_NotifyIconA

ole32

StgCreateDocfile
OleTranslateAccelerator
CoQueryClientBlanket
OleInitialize
OleCreateLink
CLSIDFromProgID
CoInitializeEx
OleGetIconOfClass
CoResumeClassObjects

oleaut32

CreateErrorInfo
SysAllocString
SafeArrayPtrOfIndex

comctl32

ImageList_DragMove
CreateToolbarEx
ImageList_Replace
ImageList_BeginDrag

shlwapi

PathCommonPrefixW
StrCatW
PathUnquoteSpacesA
PathCombineA
SHQueryValueExW
SHRegGetBoolUSValueA
SHRegQueryUSValueW
UrlCreateFromPathW
PathIsRootA
StrRetToBufW
UrlCanonicalizeW
PathIsDirectoryW
StrStrIW

setupapi

SetupCommitFileQueueA
SetupDiEnumDriverInfoW
SetupDiGetClassDevsExA
SetupInstallFromInfSectionW
SetupGetStringFieldW
SetupFindNextLine
SetupLogErrorA
SetupDiClassNameFromGuidW
SetupCloseFileQueue
SetupOpenAppendInfFileW
SetupDiEnumDriverInfoA
SetupGetLineTextW

Sections

.text
Size: 304KB - Virtual size: 303KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

784b38473174c7365989badc46ed5a02

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

setupapi

Sections

.text Size: 304KB - Virtual size: 303KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 6KB

.text
Size: 304KB - Virtual size: 303KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 6KB