26f96cde5ef5dc29f34e25d1fbb526ad_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

26f96cde5ef5dc29f34e25d1fbb526ad_JaffaCakes118
Size

360KB
MD5

26f96cde5ef5dc29f34e25d1fbb526ad
SHA1

3ea2cb6b43600a1db706450f740f39f6b0936162
SHA256

e71c4dc046e983b43021fd61801a291ab0ed5ddf4fa1bb0fe36c6880033bb20c
SHA512

3d8279ad5e4f5fa9510cc2e053a465491a2318d04321baaa29034f2d5c7381b729b5dc8216ce73fee16c3b63b40b06665c5ed278fbae98098e432fbfb40798a9
SSDEEP

6144:jyHp5xL5zU+pq/Gf4LxQ84hSgyCtzInMk1DjFy+ZAgDXOX/N+q+3OJ:jyH9xU+pqGUneRtz8zJU+iI+X/oq+3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26f96cde5ef5dc29f34e25d1fbb526ad_JaffaCakes118

Files

26f96cde5ef5dc29f34e25d1fbb526ad_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0c8a4d52cb296191657d39746c8b3fb6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFileTimeToFileTime
EraseTape
GetShortPathNameW
WriteConsoleOutputAttribute
WriteProcessMemory
CreateFiber
PeekConsoleInputW
GetTimeZoneInformation
ExitProcess
SetProcessWorkingSetSize
TransactNamedPipe
GetBinaryTypeW
FormatMessageW
SetConsoleTitleA
VirtualQueryEx
GetCommState
EnumSystemCodePagesA
GetTickCount
GlobalReAlloc
ConvertDefaultLocale
Beep
LocalFree
HeapReAlloc
SetConsoleScreenBufferSize
SetWaitableTimer
IsBadWritePtr
SetUnhandledExceptionFilter
EnumTimeFormatsW
TlsGetValue
GetFileType
FlushInstructionCache
CopyFileA
FindFirstFileExW
OpenEventA
GetFullPathNameA
lstrlenA
GetProcessWorkingSetSize
GetVersionExA
GetCommandLineA
VirtualProtect

user32

CharUpperA
AppendMenuW
CreateDesktopW
AdjustWindowRect
TileWindows
RemovePropA
CharLowerA
LoadMenuIndirectW
UnhookWindowsHook
DestroyCaret
UnhookWindowsHookEx
SetProcessDefaultLayout
CallWindowProcW
ExcludeUpdateRgn
GetGuiResources
CharUpperW
FrameRect
CloseWindow
GetClipboardFormatNameA
EnumDisplayMonitors
MessageBoxW
CreateDialogIndirectParamW
EndDeferWindowPos
BringWindowToTop
GetLastActivePopup
ReleaseDC
SetForegroundWindow
TrackPopupMenu
EnumDisplaySettingsW

gdi32

SetArcDirection
CreateDIBSection

comdlg32

ChooseColorW
GetFileTitleA

advapi32

InitiateSystemShutdownA
CryptDestroyKey
GetServiceDisplayNameW
RegCreateKeyExA
RegCloseKey
RegisterEventSourceW
CryptGetProvParam
RegSaveKeyW
EnumDependentServicesA
SetSecurityDescriptorDacl
LogonUserW
CreateServiceA
SetSecurityDescriptorGroup
RegEnumValueA
RegQueryValueExA
AddAccessDeniedAce
CryptSetKeyParam
GetSidSubAuthorityCount
CryptGetUserKey
DuplicateToken
AbortSystemShutdownA
CryptGenRandom
GetServiceDisplayNameA
AllocateLocallyUniqueId
OpenServiceA
RegUnLoadKeyA
RegCreateKeyExW
QueryServiceConfigA
CryptVerifySignatureA
LogonUserA
RegSetValueA

shell32

ShellExecuteW
DragAcceptFiles
SHAppBarMessage
SHGetSpecialFolderPathW

oleaut32

SafeArrayCreate
QueryPathOfRegTypeLi
GetErrorInfo
VariantCopy
SysStringLen

comctl32

ImageList_GetDragImage
ImageList_DragLeave
ImageList_GetIconSize
_TrackMouseEvent

shlwapi

PathQuoteSpacesA
SHRegCreateUSKeyW
PathGetArgsW
SHEnumValueW
PathUndecorateW
StrFormatByteSize64A
StrCmpLogicalW
PathFindFileNameW
PathRemoveExtensionW
StrCmpNA
PathAppendW
SHRegSetUSValueW
UrlIsW
PathIsDirectoryA

setupapi

SetupDiEnumDriverInfoW
SetupFindNextLine
SetupDiOpenDevRegKey
SetupFindFirstLineW
SetupDiGetDeviceInstallParamsW
SetupOpenAppendInfFileW
SetupInitDefaultQueueCallback
SetupDiEnumDeviceInterfaces

Sections

.text
Size: 308KB - Virtual size: 305KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0c8a4d52cb296191657d39746c8b3fb6

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

oleaut32

comctl32

shlwapi

setupapi

Sections

.text Size: 308KB - Virtual size: 305KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 40KB - Virtual size: 39KB

.text
Size: 308KB - Virtual size: 305KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 40KB - Virtual size: 39KB