25d9f00b1860e6f881957a4e2ebcaee5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

25d9f00b1860e6f881957a4e2ebcaee5_JaffaCakes118
Size

324KB
MD5

25d9f00b1860e6f881957a4e2ebcaee5
SHA1

7690f012a6f10236e97a93ef13e3345f8c57954f
SHA256

1f7e6818e3e119e12fecff616f40ffb3724581a6408591f53f9a608c73ba47a2
SHA512

06eefb89ad8e4808e806efa3685be17e335fa7a94589f458f286c1ddad92fbcbe601712c8b3b25b1e88016219c70dfb5db0a329b7bd08ce0a73139aef763fd5f
SSDEEP

6144:weeBOOmQLmoAJiXFUECkl1dA2QBwCn+KGoOfd4n+r9:weOIiX9CklowC+KGoOV4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25d9f00b1860e6f881957a4e2ebcaee5_JaffaCakes118

Files

25d9f00b1860e6f881957a4e2ebcaee5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3556d38b47c81b40f3434f5bf4d218d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeFormatW
LocalSize
GetModuleHandleA
LoadLibraryExA
GetConsoleTitleA
GetNumberFormatA
OpenFileMappingW
GetAtomNameW
GetFileInformationByHandle
GetOverlappedResult
ReadProcessMemory
WritePrivateProfileStringA
WriteFileEx
SetEndOfFile
_lcreat
FindResourceExA
_lread
lstrcpynA
EnumSystemCodePagesA
GetLargestConsoleWindowSize
SetThreadPriorityBoost
FileTimeToSystemTime
EnumTimeFormatsW
ExitProcess
GetSystemInfo
GetLocaleInfoW
GetTickCount
FlushInstructionCache
SetPriorityClass
EnumCalendarInfoA
LoadResource
DuplicateHandle
PostQueuedCompletionStatus
CopyFileW
GetVersionExA
GetCommandLineA
VirtualProtect
InterlockedExchangeAdd

user32

NotifyWinEvent
ScrollWindow
ValidateRect
EnumDisplaySettingsW
LoadBitmapW
IsCharAlphaA
TranslateAcceleratorA
SetMenuItemInfoW
CharToOemA
IsCharAlphaNumericW
DestroyCaret
GetThreadDesktop
DrawTextA
SetProcessWindowStation
FindWindowExW
GetClassInfoExW
SystemParametersInfoA

gdi32

GetObjectA
PolyBezierTo
ScaleWindowExtEx
GetTextMetricsW
CopyEnhMetaFileA
InvertRgn
GetSystemPaletteUse
CreateDIBSection
SetViewportOrgEx
GetStockObject
CopyMetaFileW
GetClipBox
CloseEnhMetaFile
CreateEllipticRgn
StrokeAndFillPath
ArcTo
Arc
GetDIBits
LPtoDP
GetROP2
CreatePalette
CreateRectRgnIndirect

comdlg32

ChooseColorW

advapi32

RegDeleteKeyW
RegQueryInfoKeyW
RegCreateKeyW
RegConnectRegistryA
GetUserNameA
RegCloseKey
QueryServiceObjectSecurity
OpenProcessToken
RegisterEventSourceW
EqualSid
InitiateSystemShutdownA
AccessCheck
CryptDecrypt
LookupAccountSidA
GetServiceDisplayNameW
LockServiceDatabase
InitializeAcl
GetNamedSecurityInfoA
SetKernelObjectSecurity
QueryServiceLockStatusW
OpenSCManagerW
LookupAccountNameA
RegGetKeySecurity
BuildTrusteeWithNameW
ObjectCloseAuditAlarmW
SetSecurityInfo

shell32

SHAppBarMessage
ShellExecuteA
ShellExecuteW
ShellAboutW

ole32

CoRegisterClassObject
CreateBindCtx
CLSIDFromProgID
OleSave
CoMarshalInterface
CoGetObject
OleCreateFromData
PropVariantClear
WriteClassStm
ReadClassStm

oleaut32

RegisterTypeLi
SafeArrayPutElement
SafeArrayGetElement
LoadTypeLibEx
VariantCopy
SysReAllocStringLen

shlwapi

wvnsprintfW
UrlApplySchemeW
StrToIntExW
SHSetValueW
StrDupW
StrChrIA
PathRenameExtensionW

setupapi

SetupScanFileQueueA
SetupDiEnumDeviceInfo
SetupDiCreateDeviceInfoList
SetupDiGetDeviceRegistryPropertyW
SetupDiGetDeviceInstanceIdW
SetupDiEnumDriverInfoW
SetupCloseFileQueue
SetupDiOpenDeviceInfoW

Sections

.text
Size: 272KB - Virtual size: 271KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3556d38b47c81b40f3434f5bf4d218d3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

setupapi

Sections

.text Size: 272KB - Virtual size: 271KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 44KB - Virtual size: 41KB

.text
Size: 272KB - Virtual size: 271KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 44KB - Virtual size: 41KB