24453758e2631297590a1669d99d6e9a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

24453758e2631297590a1669d99d6e9a_JaffaCakes118
Size

324KB
MD5

24453758e2631297590a1669d99d6e9a
SHA1

21263eaf34ffa150ca3e6a77af1944f262311c3a
SHA256

160b97263b1dbf6d03b9533643585bddfd06c0525b2059dd8d85f3b9d1085e06
SHA512

3190a7a6a9ede12bdd0a582f936e01c6c08003d5db5717263d2fcb990658aa47da3646d27cb83a578e35e18cd29a8790275ab05f987712a99269a0fa7e0826fa
SSDEEP

6144:YHplg0zzoVeZhhXmeKH41NJFZ6yr8mgsRXPBpj3BQfe:uplpzzGyXmyN0yrHgqPPj30

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24453758e2631297590a1669d99d6e9a_JaffaCakes118

Files

24453758e2631297590a1669d99d6e9a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5d05d324d652ceee3145de30ec4705b2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetHandleCount
SetNamedPipeHandleState
WriteFile
GetLogicalDriveStringsA
VirtualAllocEx
CreateIoCompletionPort
DosDateTimeToFileTime
SetConsoleWindowInfo
GetConsoleCursorInfo
GetTickCount
ReleaseMutex
GetDriveTypeA
CreateDirectoryW
FindResourceExW
GetDateFormatA
SetCommTimeouts
GetTapeStatus
PeekConsoleInputW
InitializeCriticalSection
DuplicateHandle
CreateWaitableTimerA
OutputDebugStringW
SetProcessWorkingSetSize
ReadConsoleOutputA
GetCurrentDirectoryW
SetSystemTime
FreeEnvironmentStringsA
VirtualProtect
GetVersionExA
GetUserDefaultLCID
ReleaseSemaphore
UnhandledExceptionFilter
GetStringTypeExW
EnumSystemCodePagesW
FlushConsoleInputBuffer
SetProcessAffinityMask
ReadFileScatter
CreateFileW
GetFileType
ExitThread
SetEvent
GetFileAttributesA
GetCurrentProcessId
GetDiskFreeSpaceW
FileTimeToLocalFileTime
SetConsoleOutputCP
WritePrivateProfileStructA
GetOverlappedResult
SetProcessShutdownParameters
CreateDirectoryA
GetSystemDefaultLangID
WriteConsoleOutputCharacterA
SetFileTime
FreeLibraryAndExitThread
WritePrivateProfileStringW
SetFileAttributesA
CreateMutexW
GetProcessTimes
GetProcessHeap
GetConsoleMode
SetCommMask
OutputDebugStringA
EraseTape
SetTimeZoneInformation
CreateDirectoryExA
GenerateConsoleCtrlEvent
GetLargestConsoleWindowSize
GlobalGetAtomNameW
GetCommandLineA
lstrlenA
lstrcmpiW
ExitProcess

user32

ValidateRgn
FindWindowW
CheckDlgButton
OpenIcon
mouse_event
SetWindowsHookExW
LoadBitmapW
LoadIconW
CreateWindowStationW
SetPropA
GetWindowPlacement
ShowWindow
DrawIcon
GetClipboardSequenceNumber
EnumDesktopsW
SetScrollRange
EqualRect
GetMenuItemID
SetDlgItemInt
DispatchMessageW
SetCaretBlinkTime
EnumDisplaySettingsExA
SetWindowLongW
IsCharLowerA
FrameRect
DrawStateW
GetUpdateRgn
CharPrevW
CreateDialogIndirectParamA
IsZoomed
InternalGetWindowText
ShowOwnedPopups
EmptyClipboard
GetDesktopWindow
SetPropW
CharUpperBuffA
SendDlgItemMessageA
ModifyMenuA
RegisterWindowMessageA
RegisterHotKey
SetForegroundWindow
AdjustWindowRect
CheckRadioButton
ShowScrollBar
SendNotifyMessageW
TabbedTextOutA
LoadCursorA
GetTitleBarInfo
BroadcastSystemMessageW
SetMenuItemInfoA

gdi32

PtVisible
StrokeAndFillPath
GetEnhMetaFileHeader
SetViewportOrgEx
GetTextCharsetInfo
SelectClipPath
CreateHalftonePalette
GetTextExtentPoint32A
PlayMetaFile
GetPixel
TranslateCharsetInfo
ScaleViewportExtEx
GetTextExtentPointA
StartPage
DeleteEnhMetaFile
Arc
SetPaletteEntries
RemoveFontResourceW
GetObjectW
CreateFontA
GetCharacterPlacementA

comdlg32

ReplaceTextA
ChooseColorW
GetSaveFileNameW
FindTextW

advapi32

GetServiceDisplayNameW
QueryServiceConfigA
IsValidSecurityDescriptor
RegEnumKeyExA
MapGenericMask
AllocateAndInitializeSid
RegisterEventSourceW
CryptAcquireContextW
CreateProcessAsUserW
RegDeleteValueA
GetSecurityDescriptorSacl
AbortSystemShutdownA
CryptGetKeyParam
OpenEventLogW
RegGetKeySecurity
GetUserNameW
QueryServiceObjectSecurity

shell32

SHGetSpecialFolderLocation
DragFinish
DragQueryPoint

ole32

OleSetClipboard
OleGetIconOfClass

oleaut32

SysStringLen

comctl32

ImageList_DrawEx
ImageList_LoadImageA

shlwapi

StrCmpNW
StrCpyW
StrCmpIW
PathIsSameRootW
SHRegGetBoolUSValueA
SHEnumValueW
PathAddBackslashA
PathIsURLW
StrStrA

setupapi

SetupScanFileQueueW
SetupDiClassNameFromGuidExA
SetupCloseLog
SetupTermDefaultQueueCallback
SetupDiEnumDriverInfoA
SetupDiClassGuidsFromNameW
SetupCloseFileQueue
SetupDiGetDriverInfoDetailW
SetupDiDeleteDeviceInfo

Sections

.text
Size: 288KB - Virtual size: 287KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5d05d324d652ceee3145de30ec4705b2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

setupapi

Sections

.text Size: 288KB - Virtual size: 287KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 24KB - Virtual size: 20KB

.text
Size: 288KB - Virtual size: 287KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 24KB - Virtual size: 20KB