26e8d4eef46644eb0fc2f966395cbd20_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

26e8d4eef46644eb0fc2f966395cbd20_JaffaCakes118
Size

327KB
MD5

26e8d4eef46644eb0fc2f966395cbd20
SHA1

6516ef790a2f5f0cf57d7141180469aa38991d4c
SHA256

48f042cab592d1d3234470dabd764e7f702e21aca902b34badd07f22ede1fd3f
SHA512

e4ca42bad525e5510cebc52e35f39d2277450e9d72ff5889e9c83ae87846027594106f6000c53abe7f92f067b04a3a61ed2b9e8ddbdaaad5173f3ad8d33a105b
SSDEEP

6144:jKa6lvlLHKPtC3qoC0WDG5WVKf+lt4mIpj5ftD0Q:eaq44qoI5VllGxp1q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26e8d4eef46644eb0fc2f966395cbd20_JaffaCakes118

Files

26e8d4eef46644eb0fc2f966395cbd20_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4a3c85e4b49b70cfd15a783f6441dce6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\kccilb\heec

Imports

user32

GetSystemMenu
SetMessageExtraInfo
ChangeDisplaySettingsA
SetWindowsHookA
SetForegroundWindow
RegisterClassExA
SetWindowsHookExA
GetMonitorInfoW
SetLastErrorEx
OpenDesktopA
ModifyMenuA
ReuseDDElParam
MonitorFromRect
GetClipboardData
FindWindowExW
GetAltTabInfo
SetMessageQueue
CopyAcceleratorTableA
TabbedTextOutA
DefFrameProcW
IsCharAlphaNumericW
GetNextDlgGroupItem
RegisterClassA
SetWindowLongA
InSendMessageEx

shell32

SheGetDirA
InternalExtractIconListA

comctl32

InitMUILanguage
ImageList_LoadImageW
ImageList_AddMasked
ImageList_DragLeave
CreateStatusWindowW
ImageList_GetFlags
CreatePropertySheetPageA
CreatePropertySheetPageW
CreateStatusWindow
ImageList_SetFlags
InitCommonControlsEx
DrawInsert
CreateMappedBitmap

kernel32

EnumSystemLocalesA
GetTimeZoneInformation
WritePrivateProfileStringW
HeapDestroy
GetLastError
GetModuleHandleA
VirtualFree
GetCurrentProcessId
FreeEnvironmentStringsW
GetProcessHeap
CompareStringA
FreeLibrary
GetACP
SetConsoleCtrlHandler
GetCommandLineA
CreateFileA
GetUserDefaultLCID
SetEnvironmentVariableA
ExitProcess
GetConsoleMode
GetWindowsDirectoryA
SetStdHandle
LCMapStringW
GetDateFormatA
GetStartupInfoA
QueryPerformanceCounter
GetLocaleInfoW
GetVersionExA
InterlockedExchange
VirtualAlloc
WaitForDebugEvent
CloseHandle
LoadLibraryA
GetTimeFormatA
GetModuleFileNameA
RtlUnwind
GetProcAddress
TlsGetValue
WideCharToMultiByte
MultiByteToWideChar
AllocConsole
HeapCreate
SetUnhandledExceptionFilter
InitializeCriticalSection
GetCurrentProcess
GetLocaleInfoA
VirtualUnlock
CompareStringW
GetTickCount
GetSystemTimeAdjustment
CreateMutexA
GetEnvironmentStrings
GetOEMCP
Sleep
GetCurrentThread
lstrcpynA
OpenMutexA
FreeEnvironmentStringsA
OpenFileMappingA
GetEnvironmentStringsW
SetFilePointer
VirtualQuery
LeaveCriticalSection
FlushFileBuffers
GetConsoleCP
WritePrivateProfileStructW
CreateFileMappingW
IsDebuggerPresent
HeapAlloc
TlsFree
UnhandledExceptionFilter
HeapReAlloc
HeapSize
GetStdHandle
GetStringTypeA
GetStringTypeW
SetLastError
GetFileType
EnumResourceNamesW
IsValidLocale
SetHandleCount
TerminateProcess
GetSystemTimeAsFileTime
lstrcmpi
HeapFree
WriteConsoleA
TlsAlloc
InterlockedDecrement
WriteConsoleW
LCMapStringA
TlsSetValue
WaitNamedPipeA
GetConsoleOutputCP
DeleteCriticalSection
GetCPInfo
InterlockedIncrement
ReadFile
GetCurrentThreadId
EnterCriticalSection
GetLogicalDriveStringsW
IsValidCodePage
WriteFile

Sections

.text
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 85KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4a3c85e4b49b70cfd15a783f6441dce6

Headers

File Characteristics

PDB Paths

Imports

user32

shell32

comctl32

kernel32

Sections

.text Size: 128KB - Virtual size: 128KB

.rdata Size: 85KB - Virtual size: 100KB

.data Size: 92KB - Virtual size: 91KB

.rsrc Size: 20KB - Virtual size: 20KB

.text
Size: 128KB - Virtual size: 128KB

.rdata
Size: 85KB - Virtual size: 100KB

.data
Size: 92KB - Virtual size: 91KB

.rsrc
Size: 20KB - Virtual size: 20KB