263f66f341341f45ebaa4d67047983a2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

263f66f341341f45ebaa4d67047983a2_JaffaCakes118
Size

296KB
MD5

263f66f341341f45ebaa4d67047983a2
SHA1

d638472704c992291f8373c5a65a663bc4ad7e58
SHA256

d1587f153d1265f12ab5e5ff941cd6692a88c494c1ad21021bc8fe2993315ba9
SHA512

9c5542bd834e9a40d42ee1340ad351f119467d155e781c4e31daf957251d7b765632df267df5e010552a777c326a6304cf451d3af85be13007cdebd2c5672e45
SSDEEP

6144:vrMvaqr5BzbNHml24SoYagIp+Zrv9ofCQDZKzTt/Pa:vCaqrnnlmP+IAbokzc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
263f66f341341f45ebaa4d67047983a2_JaffaCakes118

Files

263f66f341341f45ebaa4d67047983a2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e0f312602265b78a25ddc484f4661b61

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
CreateEventW
GetVersionExA
QueryPerformanceCounter
Module32Next
_lwrite
SetLocaleInfoW
GetModuleHandleA
GetWindowsDirectoryA
SetLocaleInfoA
DebugActiveProcess
SetVolumeLabelW
GetEnvironmentStrings
GetLogicalDriveStringsA
GetNamedPipeHandleStateW
GetAtomNameA
lstrlenA
LocalHandle
GetShortPathNameW
FindFirstChangeNotificationA
LeaveCriticalSection
GetFileTime
GetProcessWorkingSetSize
lstrcpyA
OutputDebugStringW
DeleteFileA
EnumCalendarInfoW
OpenMutexA
SetNamedPipeHandleState
SystemTimeToFileTime
SetThreadPriority
DeleteCriticalSection
SetCommState
GetStartupInfoA
CloseHandle
WritePrivateProfileStringA
WaitForMultipleObjectsEx
Thread32Next
EnumDateFormatsW
GetConsoleCursorInfo
DuplicateHandle
SetCalendarInfoA
GetDriveTypeW
HeapSize
LocalFlags
SetLocalTime
GetCurrencyFormatW
lstrcmpiW
SetConsoleCursorInfo
SetThreadLocale
ReadConsoleOutputCharacterW

user32

WindowFromPoint
IsChild
DrawAnimatedRects
RegisterHotKey
MessageBoxExW
IsCharAlphaA
FlashWindow
ShowScrollBar
SetPropA
WaitMessage
FindWindowW
SetDebugErrorLevel
EnumPropsW
DefMDIChildProcW
SetParent
SetMessageQueue
EnumDesktopWindows
SetClassLongW
ScreenToClient
IsCharUpperA
UnloadKeyboardLayout
GetWindowWord
GetKeyboardState
DestroyMenu
GetClassInfoExA
GetTabbedTextExtentA
SendNotifyMessageW
DefWindowProcA
GetSysColor
GetProcessWindowStation
CallWindowProcA
SetWindowsHookExW
SetWindowWord
IsCharLowerA
DestroyWindow
CreateDialogIndirectParamA

gdi32

PathToRegion
Chord
GetMiterLimit
GetRgnBox
SetGraphicsMode
SetStretchBltMode
SwapBuffers
TranslateCharsetInfo
GetFontData
ExtTextOutW
PlayMetaFileRecord
BitBlt
StartPage
CreateEllipticRgn
Polyline
PaintRgn
CreateICW
GdiGetBatchLimit
OffsetViewportOrgEx
GetWorldTransform
SetTextJustification
GetCharWidthW
CreateFontIndirectW
GetStockObject
PolyPolyline

comdlg32

FindTextW

advapi32

BuildTrusteeWithSidA
GetNamedSecurityInfoW
DuplicateTokenEx
FreeSid
CryptEnumProviderTypesA
CryptEnumProviderTypesW
LookupPrivilegeDisplayNameW
BuildImpersonateExplicitAccessWithNameW
MapGenericMask
EnumDependentServicesA
ObjectOpenAuditAlarmA
UnlockServiceDatabase
StartServiceCtrlDispatcherW
GetUserNameA
EnumServicesStatusW

shell32

ExtractIconExA
SHBrowseForFolderA
Shell_NotifyIconW

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

Sections

.text
Size: 271KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ua2czkw3
Size: 55B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dggl3ve9
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e0f312602265b78a25ddc484f4661b61

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

msvcrt

Sections

.text Size: 271KB - Virtual size: 272KB

.rdata Size: 4KB - Virtual size: 8KB

.data Size: 18KB - Virtual size: 20KB

ua2czkw3 Size: 55B - Virtual size: 4KB

dggl3ve9 Size: 512B - Virtual size: 4KB

.text
Size: 271KB - Virtual size: 272KB

.rdata
Size: 4KB - Virtual size: 8KB

.data
Size: 18KB - Virtual size: 20KB

ua2czkw3
Size: 55B - Virtual size: 4KB

dggl3ve9
Size: 512B - Virtual size: 4KB