25e531c7c29b9d8898052c1f8d0a81d0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

25e531c7c29b9d8898052c1f8d0a81d0_JaffaCakes118
Size

324KB
MD5

25e531c7c29b9d8898052c1f8d0a81d0
SHA1

3937d31449238b1ef6d2107c1dc2f49d612a70ae
SHA256

7cf79764631a7b67086736acf33ffec99f2ca8509007d425fb3286b2ebbc801b
SHA512

6819d5781819624d459795de83136e28c3cfd5378bf4c95fa0f38b1a503017961f595c275a7de49634179a81fa31b96f315341b875b48df64f72bf061d800928
SSDEEP

6144:oZKqr18M5jUONbHNpzZmc83n+xypjQbJpK4vZr75sXKqE7eroLr63rI:iKrMSOVHNpzkr3n7pjQ3/vZ3qIxKrI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25e531c7c29b9d8898052c1f8d0a81d0_JaffaCakes118

Files

25e531c7c29b9d8898052c1f8d0a81d0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8c5f06e59c0d663265ebb3c54af4ce3c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindNextFileA
GetThreadTimes
EnumSystemCodePagesW
GetDateFormatW
CreateFileMappingA
GetExitCodeProcess
CreateThread
EnumDateFormatsW
FileTimeToDosDateTime
GetSystemInfo
SetCurrentDirectoryW
HeapReAlloc
GetPrivateProfileSectionW
FindResourceW
CompareFileTime
OpenSemaphoreW
GetLongPathNameW
GetTempPathA
GetCommTimeouts
GetTapePosition
GetFileAttributesExA
SetLastError
GetLastError
EnumTimeFormatsW
SystemTimeToTzSpecificLocalTime
lstrcmpiW
GetTickCount
MoveFileExW
GetCPInfo
WideCharToMultiByte
EnumCalendarInfoW
CreateFileMappingW
MoveFileExA
lstrcmpiA
VirtualProtect
GetVersionExA
SetEndOfFile
ConvertThreadToFiber
GetProcessAffinityMask
GetUserDefaultLangID
RemoveDirectoryA
GetOEMCP
GetEnvironmentVariableA
LockFileEx
GetCommandLineW
VirtualAlloc
ResumeThread
GetProfileStringW
OpenFile
ReadConsoleInputW
PrepareTape
WaitForSingleObject
FindClose
TlsGetValue
FindResourceA
OpenMutexA
OpenMutexW
EnumCalendarInfoA
LocalLock
SwitchToFiber
SetConsoleActiveScreenBuffer
SleepEx
CreateWaitableTimerW
LoadLibraryExW
GetSystemTimeAsFileTime
WaitForSingleObjectEx
GlobalAddAtomW
CreateConsoleScreenBuffer
ExitProcess
SetWaitableTimer
SetConsoleMode
GlobalUnlock
CreateNamedPipeW
SetProcessShutdownParameters
GlobalGetAtomNameW
OpenFileMappingA
CreateDirectoryExA
EnterCriticalSection
DefineDosDeviceA
GlobalFlags
OpenFileMappingW
IsValidLocale
WriteConsoleInputW
GetCommModemStatus
ReadConsoleA
WriteConsoleA
GetProcessTimes
GetCommandLineA

user32

OpenWindowStationW
ShowCursor
SetCapture
DefDlgProcA
IsWindowUnicode
AppendMenuW
EnumDisplayMonitors
CountClipboardFormats
RegisterWindowMessageA
EnumDesktopWindows
ModifyMenuW
ChildWindowFromPoint
CreateCursor
GetDialogBaseUnits
CreateIconIndirect
LoadCursorW
IsWindowVisible
FindWindowA
CallWindowProcW
LoadMenuIndirectW
CallNextHookEx
GetCursorPos
GetClassInfoExW
WinHelpA
TrackMouseEvent
GetScrollPos
MonitorFromWindow
MapVirtualKeyExW
GetWindowTextLengthA
GetWindowDC
GetClipboardViewer
GetWindowRect
DestroyCursor
GetClassNameA
LoadAcceleratorsW
CharLowerA
DialogBoxParamW
ChildWindowFromPointEx
IsRectEmpty
GetProcessDefaultLayout
EndPaint
RegisterHotKey
WinHelpW
WaitForInputIdle
GetSysColorBrush
EmptyClipboard
ModifyMenuA

gdi32

WidenPath
Pie
IntersectClipRect
EnumObjects
ArcTo
CreateDIBitmap
GetBitmapBits
AddFontResourceA
GetRgnBox
MaskBlt
EnumFontsA
EndDoc
CreateBitmap
SetDIBits
CreateFontA
CreateRoundRectRgn
SetTextAlign
EnumFontsW
SetWinMetaFileBits

comdlg32

CommDlgExtendedError
GetFileTitleW
PrintDlgA

advapi32

QueryServiceConfigA
RegSetKeySecurity
RegSaveKeyA
CryptSetKeyParam
ChangeServiceConfigA
RegSetValueA
RegQueryValueExW
EnumServicesStatusA
ReportEventW
SetSecurityDescriptorSacl
EnumDependentServicesW
StartServiceCtrlDispatcherA
RegFlushKey
QueryServiceLockStatusW
CryptDestroyHash
CryptGetProvParam
RegCreateKeyExW
RegCreateKeyExA
DuplicateTokenEx
GetSidLengthRequired
NotifyChangeEventLog
DeleteAce
SetSecurityDescriptorOwner
SetSecurityDescriptorDacl
CreateServiceW
OpenSCManagerW
RegDeleteKeyW

shell32

SHGetFileInfoA
SHGetSpecialFolderPathA
ShellAboutA
SHGetMalloc

ole32

CoMarshalInterface
CoFreeUnusedLibraries
MkParseDisplayName
CoRegisterClassObject
CLSIDFromString
CoIsOle1Class

oleaut32

VariantCopyInd
VariantCopy

comctl32

ImageList_SetIconSize
ImageList_SetImageCount
PropertySheetA

shlwapi

PathCompactPathExW
StrRChrW
SHRegCloseUSKey
StrDupW
SHStrDupW
PathIsFileSpecW
PathCombineW
PathFileExistsW
PathAddExtensionW
PathRemoveExtensionW
AssocQueryKeyW
PathIsFileSpecA
PathIsPrefixW
PathFindExtensionW
StrStrIW
PathRemoveFileSpecA
PathGetCharTypeA
PathIsURLW
SHQueryValueExW
StrFormatByteSize64A

setupapi

SetupDiGetDeviceInterfaceDetailW
SetupOpenAppendInfFileW
SetupDiGetClassDevsExW
SetupDiGetDriverInfoDetailW
SetupDiGetINFClassA
SetupDiClassGuidsFromNameW
SetupGetLineTextA

Sections

.text
Size: 272KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8c5f06e59c0d663265ebb3c54af4ce3c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

setupapi

Sections

.text Size: 272KB - Virtual size: 268KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 40KB - Virtual size: 38KB

.text
Size: 272KB - Virtual size: 268KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 40KB - Virtual size: 38KB