2733fec2a992b47dd13281458588a395_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2733fec2a992b47dd13281458588a395_JaffaCakes118
Size

367KB
MD5

2733fec2a992b47dd13281458588a395
SHA1

6900634af443cb83506fcc13b1e423db1e80d9ca
SHA256

0155e8abd8b933f880a605e3793d7a15abd1d44bb31bdbef63a2605323e64254
SHA512

99a3ee8ba69fa679a5f66d2e4de6ff196c838ceab60b84cb6379acab0bfa1bc9471007d80ae4023a1b5faea11af97519e786c6e9087bace81445ae0d1941c287
SSDEEP

6144:BbHlyNx4HQznUiEJalnJXrU/JSnuqwlBkpk/KI3uwSBDPP:BzENGApVgBeuqwFbzSB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2733fec2a992b47dd13281458588a395_JaffaCakes118

Files

2733fec2a992b47dd13281458588a395_JaffaCakes118
.exe windows:4 windows x86 arch:x86

998384bdce3551fdc75c117684ab25d6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

RealShellExecuteExA

comctl32

DrawStatusText
ImageList_Remove
ImageList_Copy
ImageList_DragShowNolock
DrawStatusTextW
ImageList_SetIconSize
MakeDragList
CreatePropertySheetPage
ImageList_Write
ImageList_Duplicate
GetEffectiveClientRect
CreatePropertySheetPageA
ImageList_SetImageCount
ImageList_SetDragCursorImage
ImageList_LoadImage
ImageList_GetIcon
ImageList_Merge
ImageList_GetImageInfo
CreateToolbar
ImageList_SetBkColor
ImageList_Draw
ImageList_BeginDrag
ImageList_Read
InitCommonControlsEx

user32

DlgDirListA
CreateWindowExW
SetFocus
DefWindowProcW
TrackPopupMenu
CharToOemW
GetInputState
SetWinEventHook
RegisterClassA
DestroyWindow
MessageBoxA
DefFrameProcW
RegisterClassExA
ShowWindow

kernel32

GetModuleFileNameW
FlushFileBuffers
GetStringTypeW
CompareStringW
CloseHandle
HeapCreate
InitializeCriticalSection
GetVersionExA
HeapAlloc
GetLastError
ExitProcess
TlsFree
GetCurrentThread
InterlockedIncrement
VirtualFree
CreateMutexW
GetTimeFormatA
GetFileType
VirtualAlloc
SetConsoleCtrlHandler
IsValidCodePage
SetHandleCount
GetCommandLineA
GetEnvironmentStringsW
GetUserDefaultLCID
TlsAlloc
EnumSystemLocalesA
QueryPerformanceCounter
GetLocaleInfoA
FormatMessageW
WriteFile
UnhandledExceptionFilter
ReadFile
LeaveCriticalSection
GetProcAddress
Sleep
SetConsoleActiveScreenBuffer
CompareStringA
SetStdHandle
GetOEMCP
GetTickCount
TerminateProcess
WideCharToMultiByte
TlsGetValue
GetStringTypeA
InterlockedDecrement
SetFilePointer
GetConsoleCP
GetDateFormatA
GetCPInfo
TlsSetValue
GetLocaleInfoW
HeapReAlloc
FreeLibrary
InterlockedExchange
VirtualQuery
MultiByteToWideChar
SetEnvironmentVariableA
IsDebuggerPresent
GetCurrentThreadId
LCMapStringW
CreateMutexA
GetStdHandle
FreeEnvironmentStringsW
DeleteCriticalSection
GetCurrentProcess
RtlUnwind
GetConsoleMode
GetModuleFileNameA
IsValidLocale
LCMapStringA
GetCurrentProcessId
GetModuleHandleA
GetACP
GetCommandLineW
HeapDestroy
OpenMutexA
WriteConsoleW
LoadLibraryA
GetEnvironmentStrings
SetLastError
GetTimeZoneInformation
HeapSize
FreeEnvironmentStringsA
WriteConsoleA
GetStartupInfoW
EnterCriticalSection
SetUnhandledExceptionFilter
GetProcessHeap
GetSystemTimeAsFileTime
GetStartupInfoA
CreateFileA
GetConsoleOutputCP
HeapFree

Sections

.text
Size: 204KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 31KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

998384bdce3551fdc75c117684ab25d6

Headers

File Characteristics

Imports

shell32

comctl32

user32

kernel32

Sections

.text Size: 204KB - Virtual size: 204KB

.rdata Size: 31KB - Virtual size: 51KB

.data Size: 91KB - Virtual size: 90KB

.rsrc Size: 39KB - Virtual size: 39KB

.text
Size: 204KB - Virtual size: 204KB

.rdata
Size: 31KB - Virtual size: 51KB

.data
Size: 91KB - Virtual size: 90KB

.rsrc
Size: 39KB - Virtual size: 39KB