262f13133779958902267bd31e59f6ec_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

262f13133779958902267bd31e59f6ec_JaffaCakes118
Size

344KB
MD5

262f13133779958902267bd31e59f6ec
SHA1

5426e75b9cc66642d8500cdc415701f3adc3f9a9
SHA256

f657a572638b8cb5de25ac3ffa0aa6cd79aab89e52dac5eebdfce246a87dea57
SHA512

68ee5961fbda337cbc51e03f64ea9f91a5c137eb6ec7c391442378676ee271b38aca0880611194af35e7fa37ce8aad70dc03c92ea3a8150b4aeb66e50591c5ac
SSDEEP

6144:cyiiCCQ0/MLSrzQrXHpv3p7eGV7/M5yeIVKXXScmWIUi8vLnQ+k:tiil3/MLnz7i5ykXXScAjUi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
262f13133779958902267bd31e59f6ec_JaffaCakes118

Files

262f13133779958902267bd31e59f6ec_JaffaCakes118
.exe windows:4 windows x86 arch:x86

668d987d9c177185a7e1ddab7a77b687

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AreFileApisANSI
_lclose
ReleaseSemaphore
DeleteFiber
SetThreadAffinityMask
SetStdHandle
VirtualFree
WriteConsoleOutputW
Beep
CreateDirectoryW
GetFileAttributesA
SwitchToFiber
WritePrivateProfileStructA
GetProcessTimes
LocalAlloc
GetTempFileNameA
CompareStringA
FindFirstFileW
GetModuleFileNameW
SetEndOfFile
SetCommMask
GlobalDeleteAtom
GlobalUnlock
EnumCalendarInfoA
lstrcmpiA
GetHandleInformation
EnumSystemCodePagesW
GetThreadContext
FindFirstFileA
LoadLibraryExA
FindResourceExA
SetMailslotInfo
lstrcmpA
RemoveDirectoryW
FindFirstFileExW
GetBinaryTypeW
ConnectNamedPipe
CreateNamedPipeW
GetProfileStringA
GetCurrentProcessId
GetACP
GlobalFlags
OutputDebugStringA
GetDiskFreeSpaceExA
OpenSemaphoreW
GetCommConfig
GenerateConsoleCtrlEvent
OpenFile
SetHandleCount
GlobalFindAtomW
GetEnvironmentStringsW
GetVersion
GetEnvironmentVariableW
WritePrivateProfileStringW
FormatMessageW
SearchPathW
GetShortPathNameA
GetUserDefaultLCID
LocalLock
RaiseException
FindCloseChangeNotification
lstrcatW
LCMapStringA
ReadConsoleOutputA
LocalFileTimeToFileTime
GetDiskFreeSpaceW
LocalReAlloc
VirtualQueryEx
GetCommandLineA
GetVersionExA
VirtualProtect
SetConsoleWindowInfo
ExitProcess

user32

InvalidateRgn
FindWindowExW
wsprintfW
SetScrollPos
GetClipboardData
GetCursorPos
TileWindows
DrawIconEx
TabbedTextOutW
CharUpperW
CharPrevW
TabbedTextOutA
LoadKeyboardLayoutW
CloseClipboard
DefFrameProcW

gdi32

GetCharWidth32A
OffsetWindowOrgEx
PtInRegion
GetRegionData
SetStretchBltMode

comdlg32

PageSetupDlgW

advapi32

CryptExportKey
IsTextUnicode
ChangeServiceConfigW
RegQueryValueExW
GetSidSubAuthority
IsValidAcl
GetFileSecurityA
CryptEncrypt
AccessCheck
CryptDestroyKey
QueryServiceObjectSecurity
ReportEventA
OpenThreadToken
EnumDependentServicesA
OpenEventLogW
EnumServicesStatusW
RegReplaceKeyW
RegQueryValueA
AccessCheckAndAuditAlarmW
RegGetKeySecurity
ClearEventLogW
AddAccessAllowedAce
GetLengthSid
CryptGenKey
RegisterServiceCtrlHandlerA
RegSetValueA

shell32

DragFinish
ShellExecuteA
Shell_NotifyIconA
SHFileOperationW
ExtractIconExW
SHLoadInProc

ole32

RevokeDragDrop
OleRegGetMiscStatus

oleaut32

SafeArrayUnaccessData
SafeArrayCreate
SysAllocStringLen
SafeArrayRedim
QueryPathOfRegTypeLi
LoadTypeLi
SysStringLen
SafeArrayPutElement
SetErrorInfo
LoadTypeLibEx

shlwapi

StrTrimW

setupapi

SetupDiEnumDriverInfoW
SetupInitDefaultQueueCallback
SetupDiDestroyDriverInfoList
SetupGetLineTextW
SetupDiEnumDeviceInfo
SetupDiCallClassInstaller

Sections

.text
Size: 288KB - Virtual size: 287KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

668d987d9c177185a7e1ddab7a77b687

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

setupapi

Sections

.text Size: 288KB - Virtual size: 287KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 44KB - Virtual size: 43KB

.text
Size: 288KB - Virtual size: 287KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 44KB - Virtual size: 43KB