267b1923a25e8a31e212457d7939efb3_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

267b1923a25e8a31e212457d7939efb3_JaffaCakes118
Size

304KB
MD5

267b1923a25e8a31e212457d7939efb3
SHA1

f46882ead700da7da8146f8bebf38b81a24d7b15
SHA256

6460cdbafd24e2bdc44bd04d95318d19280a839e3f20d3c9f078646cfc049090
SHA512

7690edbac8803463b5ba81f06442b0a4133806f02c74d68c857b2077ec7ae055d62f557243377cce737fd3f9a753e0567286c20484503bf951561ad6e2f9127a
SSDEEP

6144:kK5L3kBCzDreqv/KjOWHZi2vUION/LjtLgWPZTN:kyL3kBCzDrij759cVDg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
267b1923a25e8a31e212457d7939efb3_JaffaCakes118

Files

267b1923a25e8a31e212457d7939efb3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

553230f85d03c1306dae56f28adb3676

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FoldStringW
FindFirstFileW
LeaveCriticalSection
UpdateResourceA
CreateFileMappingA
GlobalFindAtomA
GetTimeZoneInformation
DefineDosDeviceW
_lwrite
GetDriveTypeA
TryEnterCriticalSection
HeapFree
FreeResource
lstrcpyA
GlobalAlloc
GetTempFileNameW
HeapReAlloc
WriteProfileStringW
FindFirstFileA
SetConsoleWindowInfo
WriteConsoleInputA
GetTapePosition
GetCommConfig
GlobalUnlock
GetProfileStringA
SetTimeZoneInformation
SetConsoleActiveScreenBuffer
GetPrivateProfileStringA
DefineDosDeviceA
VirtualProtect
GlobalCompact
GetTimeFormatA
GlobalLock
GetCommandLineW
LoadResource
MulDiv
GetConsoleCursorInfo
GetModuleFileNameA
AddAtomW
BeginUpdateResourceA
GetProfileIntW
SetStdHandle
CreateFileW
WaitForSingleObject
CreateMailslotW
GetDateFormatA
OpenFile
ResumeThread
TlsGetValue
CreateNamedPipeA
FlushFileBuffers
GetConsoleTitleA
SetConsoleCtrlHandler
SetFileTime
QueryDosDeviceA
SetEnvironmentVariableA
GetCommProperties
BackupWrite
SetVolumeLabelW
UnlockFileEx
VirtualQueryEx
BackupRead
HeapSize
InterlockedExchangeAdd
ConvertThreadToFiber
GlobalReAlloc
FileTimeToLocalFileTime
SystemTimeToTzSpecificLocalTime
_lread
EnumResourceNamesA
EnumDateFormatsW
GetCommandLineA
GetVersionExA
lstrcpynW
ExitProcess

user32

GetQueueStatus
CopyImage
DrawEdge
SetClassLongA
SetKeyboardState
GetUpdateRgn
BeginPaint
IsWindowVisible
GetClipboardData
PostQuitMessage
MsgWaitForMultipleObjects
SetWindowRgn
GetWindowPlacement
SetCaretPos
TabbedTextOutA
DestroyCursor

gdi32

GetCharWidthW
GetMetaFileBitsEx
EndDoc
FillRgn
ExtFloodFill
GetStretchBltMode
StartDocW
GetEnhMetaFileBits
StretchBlt
Polyline
SetROP2
RestoreDC
CreateFontIndirectW
MaskBlt
CreateRectRgnIndirect
GetCharWidth32A
GetROP2
CreateEllipticRgnIndirect
GetEnhMetaFileHeader
SetArcDirection

comdlg32

FindTextW
ChooseColorW

advapi32

CryptCreateHash
GetFileSecurityW
StartServiceW
RegCreateKeyA
DuplicateToken
ChangeServiceConfigW
LogonUserA
RegOpenKeyExA
CryptReleaseContext
RegCreateKeyExW
RevertToSelf
GetSidLengthRequired
SetNamedSecurityInfoW
RegSaveKeyW
CryptAcquireContextA
SetSecurityInfo
CryptEncrypt
InitializeAcl
AddAccessAllowedAce
RegQueryValueW
LookupAccountNameA
ImpersonateSelf

shell32

ShellAboutW
DragQueryFileW
ExtractAssociatedIconA
ExtractIconA
ShellAboutA

ole32

ReleaseStgMedium
CoIsOle1Class
CreateGenericComposite
StgSetTimes
CoQueryProxyBlanket
OleQueryLinkFromData
OleLockRunning
WriteClassStm
OleCreate

oleaut32

CreateErrorInfo
QueryPathOfRegTypeLi
VariantClear

shlwapi

PathGetCharTypeW
SHRegSetUSValueW
PathIsFileSpecA
UrlIsW
StrChrW
PathCombineA
StrRChrA

setupapi

SetupDiGetDeviceInterfaceDetailW
SetupDiCreateDeviceInfoA
SetupDiClassGuidsFromNameExA
SetupCloseFileQueue
SetupDiEnumDeviceInterfaces
SetupInstallServicesFromInfSectionA
SetupInstallFromInfSectionW

Sections

.text
Size: 280KB - Virtual size: 279KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

553230f85d03c1306dae56f28adb3676

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

setupapi

Sections

.text Size: 280KB - Virtual size: 279KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 12KB - Virtual size: 11KB

.text
Size: 280KB - Virtual size: 279KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 12KB - Virtual size: 11KB