23f88c367c5e1c704b4576955a908964_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

23f88c367c5e1c704b4576955a908964_JaffaCakes118
Size

515KB
MD5

23f88c367c5e1c704b4576955a908964
SHA1

650d4a39364c7c5eb53a746f97a97bf81e90ec26
SHA256

7357c673c31f95ec53faf53a4ee67e9c308d96d5258443882dbb97ade04e7b75
SHA512

2ca46bbf7bcc028cb4b2e405a23d18826c0ef4d61f0bd9f2a4a9c5e6e9448ae0bda99a0118195195a66979e15af4e78e97a2adfdb1ac4715c373dcf1a11ab217
SSDEEP

12288:Nd/sPjhTmtBz0blpcj6J2Av7bmNq3UTkL9:NdkPjMvz0blijD6/jkQh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23f88c367c5e1c704b4576955a908964_JaffaCakes118

Files

23f88c367c5e1c704b4576955a908964_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b235d9bb1bc059c5e633ebe31dd9aaf4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
HeapReAlloc
WriteFile
IsValidCodePage
IsBadWritePtr
LCMapStringA
lstrcpyW
LoadLibraryA
GetTimeFormatA
VirtualFree
InitializeCriticalSection
GetEnvironmentStrings
CompareStringW
SetEnvironmentVariableA
SystemTimeToTzSpecificLocalTime
CloseHandle
GetPrivateProfileIntA
HeapSize
GetLastError
LCMapStringW
LockFile
EnterCriticalSection
MultiByteToWideChar
GetProcessAffinityMask
IsValidLocale
GetTimeZoneInformation
TerminateProcess
SetConsoleCP
OpenMutexA
GetModuleHandleA
GetFileType
GetModuleFileNameA
GetStartupInfoA
OpenProcess
VirtualAlloc
GetStringTypeW
EnumCalendarInfoW
FlushFileBuffers
GetEnvironmentStringsW
TlsGetValue
TlsFree
GetSystemTimeAsFileTime
VirtualProtect
SetStdHandle
InterlockedExchange
SetHandleCount
DeleteCriticalSection
GetCurrentThreadId
CompareStringA
FreeEnvironmentStringsA
RtlUnwind
GetOEMCP
GetACP
FreeEnvironmentStringsW
SetFilePointer
GetCurrentProcessId
GetCPInfo
GetSystemInfo
GetDateFormatA
GetLocaleInfoA
SetLastError
TlsAlloc
GetLocaleInfoW
GetStdHandle
HeapCreate
GetConsoleScreenBufferInfo
GetProcAddress
GetCurrentProcess
GetCommandLineA
LocalShrink
GetConsoleOutputCP
CreateMutexA
GetVersionExA
LeaveCriticalSection
EnumSystemLocalesA
TlsSetValue
GetUserDefaultLCID
ExitProcess
UnhandledExceptionFilter
GetCurrentThread
HeapDestroy
ReadFile
HeapFree
QueryPerformanceCounter
VirtualQuery
GetDriveTypeW
WideCharToMultiByte
GetTickCount
SetVolumeLabelA
HeapAlloc
GlobalCompact

user32

AppendMenuW
CloseClipboard
CreateWindowExW
RegisterClassExA
DlgDirSelectExA
SetWinEventHook
DefWindowProcA
DestroyWindow
RegisterClassA
WindowFromDC
ShowWindow
MessageBoxW
MessageBoxIndirectA

comdlg32

FindTextW
GetSaveFileNameA
ReplaceTextA
PageSetupDlgA

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListW
RealShellExecuteA
SHGetDiskFreeSpaceA
SHFormatDrive

comctl32

ImageList_GetBkColor
DrawStatusTextA
CreateUpDownControl
CreateStatusWindowW
DrawInsert
ImageList_GetIcon
InitCommonControlsEx
ImageList_BeginDrag
CreatePropertySheetPageW
DrawStatusText
ImageList_GetDragImage

gdi32

SetMiterLimit
CreatePen
CreateScalableFontResourceW
GetCurrentPositionEx
ColorCorrectPalette
EnumFontFamiliesA
FlattenPath
CreatePalette
GetCurrentObject
AbortDoc
CancelDC
ResetDCA
CloseMetaFile
CreateColorSpaceW
ExtTextOutA

Sections

.text
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 251KB - Virtual size: 275KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b235d9bb1bc059c5e633ebe31dd9aaf4

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

shell32

comctl32

gdi32

Sections

.text Size: 128KB - Virtual size: 128KB

.rdata Size: 251KB - Virtual size: 275KB

.data Size: 116KB - Virtual size: 116KB

.rsrc Size: 18KB - Virtual size: 17KB

.text
Size: 128KB - Virtual size: 128KB

.rdata
Size: 251KB - Virtual size: 275KB

.data
Size: 116KB - Virtual size: 116KB

.rsrc
Size: 18KB - Virtual size: 17KB