25d4ed7573f65a828361330d0f20dfce_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

25d4ed7573f65a828361330d0f20dfce_JaffaCakes118
Size

320KB
MD5

25d4ed7573f65a828361330d0f20dfce
SHA1

151b73bf65e06e4a2e45e96a09ed8e937aabb1c6
SHA256

8f9825e50b2925a399a5d07a78248beae69e7428648ec31d2a20507b1a11c887
SHA512

fa7f67d8dddc55b11d37421ea996758a8a1d92f06a9d5a68a8c0ca3ec20dce8949417c4f6f364c14b5325e731ab992f990f3e77f11b8f9c4bbadcc5204b93f9c
SSDEEP

6144:4TuFizG/eegNhVW1/4CvbmbbyZwAxteyIbfoMNDX4r+Pne1AiNP33r:bizksNhI1VybySAzey0ogDO+f3i53r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25d4ed7573f65a828361330d0f20dfce_JaffaCakes118

Files

25d4ed7573f65a828361330d0f20dfce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

77030810aec0a3828cb9d493b5e05dff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceNamesA
UnhandledExceptionFilter
EnumResourceTypesA
GetLongPathNameA
GetModuleFileNameA
ReadConsoleOutputA
GetCurrentDirectoryW
GetExitCodeThread
SetCurrentDirectoryA
EnterCriticalSection
GlobalGetAtomNameW
AddAtomW
UnlockFileEx
PeekNamedPipe
GetTimeFormatW
GetLargestConsoleWindowSize
GetSystemDirectoryW
GetCommState
_lwrite
_lclose
DeleteFileW
LocalUnlock
OpenEventA
DefineDosDeviceA
ReadFile
DeleteAtom
SuspendThread
OpenFileMappingW
ScrollConsoleScreenBufferW
GetVolumeInformationA
FreeResource
GetCompressedFileSizeW
TransactNamedPipe
GetTapeStatus
GetModuleHandleW
HeapReAlloc
CallNamedPipeW
CreateMutexW
FormatMessageW
LocalSize
ReadProcessMemory
FileTimeToDosDateTime
CreateFiber
GetComputerNameW
CreateDirectoryW
FlushFileBuffers
WriteProfileStringA
GetConsoleCursorInfo
FindNextFileW
CreateMutexA
SetSystemTime
GetCurrentThread
GlobalHandle
SwitchToFiber
AllocConsole
FindResourceExW
PrepareTape
GetCommModemStatus
VirtualProtect
FlushInstructionCache
OutputDebugStringA
EndUpdateResourceA
SetLocalTime
FindFirstChangeNotificationW
GetNamedPipeInfo
FindFirstChangeNotificationA
ExpandEnvironmentStringsA
GetVersionExA
GetCommandLineA
GetExitCodeProcess
ExitProcess

user32

TileWindows
EndDeferWindowPos
InsertMenuA
GetClassInfoA
ToUnicode
MsgWaitForMultipleObjects
GetSystemMetrics
SetWindowWord
BroadcastSystemMessageA
DefDlgProcW
CreatePopupMenu
ExitWindowsEx
InflateRect
OemToCharBuffW
GetDlgCtrlID
DrawIconEx
LoadStringW
DefMDIChildProcW
GetMenu
InsertMenuW
CreateIconFromResource
PostThreadMessageA
VkKeyScanA

gdi32

DeleteDC
MoveToEx
SetAbortProc
CreateCompatibleBitmap

comdlg32

ChooseColorA
PageSetupDlgA
PrintDlgW

advapi32

RegConnectRegistryA
NotifyChangeEventLog
FreeSid
CryptAcquireContextW

shell32

ExtractIconW
SHGetPathFromIDListA
DragFinish
FindExecutableA
SHChangeNotify

ole32

CreateFileMoniker
CoMarshalInterface
CreateStreamOnHGlobal
OleSaveToStream
SetConvertStg
CoCreateGuid

oleaut32

SafeArrayGetLBound
GetActiveObject

comctl32

ImageList_EndDrag

shlwapi

ChrCmpIW
StrDupA
SHRegOpenUSKeyW
StrStrIA
StrCmpW
PathFindNextComponentW
SHAutoComplete
PathIsRootA
PathIsUNCServerW
SHRegCloseUSKey
PathAddBackslashW
PathStripPathW
StrCpyNW
UrlCombineW
UrlGetPartA
StrDupW
UrlCreateFromPathW
PathUndecorateW
StrRStrIW

setupapi

SetupOpenLog
SetupDiGetClassDevsExA
SetupGetLineTextA
SetupDiBuildDriverInfoList
SetupCloseLog

Sections

.text
Size: 292KB - Virtual size: 289KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

77030810aec0a3828cb9d493b5e05dff

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

setupapi

Sections

.text Size: 292KB - Virtual size: 289KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 16KB - Virtual size: 14KB

.text
Size: 292KB - Virtual size: 289KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 16KB - Virtual size: 14KB