2708340e283d174f8409b00a0d86af28_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2708340e283d174f8409b00a0d86af28_JaffaCakes118
Size

372KB
MD5

2708340e283d174f8409b00a0d86af28
SHA1

f08938cc1c4c68f566645236c46750687eff7873
SHA256

ac14ea7b0511f86902faa200055ddeae318148d249e05b8d22730cd9b62be130
SHA512

a7295b714da330c138b1bf8f1d592a2ce036825c35c565882a7cb7ae9135746b57eff74d1b02143f88d02aa50bdbf01fdfd8f54c8f652ae0e0e82e0d426d826e
SSDEEP

6144:YglBjPn3JsCETFkD0tI75KIGt5ND8/auGwixm5spdoHDN6sRLmMuGcmio/qmiO:YWLn3JsCMUNyN4LUks8HD5b/q2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2708340e283d174f8409b00a0d86af28_JaffaCakes118

Files

2708340e283d174f8409b00a0d86af28_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c10286ecd58faa4bc1ae1a52522ae3e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleWindowInfo
Beep
GetSystemInfo
GetCompressedFileSizeW
FindNextChangeNotification
SetVolumeLabelA
CreatePipe
GlobalFindAtomW
DosDateTimeToFileTime
GlobalFindAtomA
WritePrivateProfileStructA
CopyFileExW
GetModuleHandleA
RemoveDirectoryA
GlobalFree
GetCPInfo
GlobalDeleteAtom
VirtualAllocEx
GetProcessHeap
QueryDosDeviceA
FreeLibrary
WritePrivateProfileStringA
GetAtomNameA
GetCurrentDirectoryW
FormatMessageW
LoadLibraryExA
SetConsoleOutputCP
GlobalAddAtomA
EnumResourceNamesA
OpenMutexA
FileTimeToLocalFileTime
EnumDateFormatsW
GetCommModemStatus
AreFileApisANSI
GetLongPathNameA
GetNumberFormatW
ReadConsoleOutputA
SetEvent
FindFirstFileW
SetMailslotInfo
SetFileTime
EnumResourceNamesW
LocalReAlloc
SizeofResource
GlobalUnlock
OpenSemaphoreW
SetEnvironmentVariableA
PurgeComm
RaiseException
VirtualFree
DebugBreak
CreateDirectoryA
GetDiskFreeSpaceW
EnumCalendarInfoA
ScrollConsoleScreenBufferA
lstrcatW
LocalFileTimeToFileTime
MultiByteToWideChar
SetupComm
SetStdHandle
AllocConsole
SetNamedPipeHandleState
lstrcmpiA
GetCommandLineA
GetVersionExA
lstrlenA
VirtualProtect
VirtualLock
ExitProcess

user32

ScrollWindowEx
SetProcessDefaultLayout
EnableWindow
MenuItemFromPoint
EnableScrollBar
IsCharAlphaNumericA
UnhookWindowsHook
GetMenuItemRect
OpenDesktopA
SendDlgItemMessageA
LoadImageA
CopyIcon
DefFrameProcW
GetWindowTextW
DestroyCursor
IsZoomed
GetDlgCtrlID
MsgWaitForMultipleObjectsEx
LockWindowUpdate
VkKeyScanA
GrayStringA
UnionRect
SwitchDesktop
CheckRadioButton
PeekMessageW
IsDialogMessageA

gdi32

GetWindowExtEx
CreateEnhMetaFileA
EnumMetaFile
GetBrushOrgEx
ExcludeClipRect
IntersectClipRect
CloseMetaFile
GetCharacterPlacementA
SetTextColor
PolyBezierTo
StretchBlt
CloseFigure
BeginPath
SetWindowOrgEx
SetBitmapDimensionEx
FrameRgn
SelectPalette
CreateFontW
GetCurrentPositionEx
SaveDC

comdlg32

ChooseFontA
GetOpenFileNameW

advapi32

CryptImportKey
AdjustTokenPrivileges
QueryServiceStatus
RegLoadKeyW
UnlockServiceDatabase
NotifyBootConfigStatus
LookupAccountNameA
CryptDestroyKey
GetNamedSecurityInfoW
GetSidIdentifierAuthority
CryptVerifySignatureA
SetTokenInformation
GetSidSubAuthorityCount
GetServiceDisplayNameA

shell32

SHGetSpecialFolderPathA
FindExecutableA
SHAddToRecentDocs
SHGetPathFromIDListA
SHLoadInProc

ole32

CreateOleAdviseHolder
CoMarshalInterface
OleLockRunning
OleCreateFromData
OleSetContainedObject
CoGetInterfaceAndReleaseStream
GetRunningObjectTable
OleCreateMenuDescriptor

oleaut32

QueryPathOfRegTypeLi
SysFreeString
SafeArrayPutElement
LoadTypeLi
SetErrorInfo
SafeArrayGetElement
SafeArrayCreate
VariantChangeType
VariantCopy

comctl32

ImageList_LoadImageA
CreatePropertySheetPageA
ImageList_SetImageCount

shlwapi

StrChrIA
StrCatBuffA
PathGetDriveNumberW
SHRegWriteUSValueW
PathIsRelativeW
StrCatBuffW
SHDeleteKeyA
PathCompactPathExW

Sections

.text
Size: 336KB - Virtual size: 332KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c10286ecd58faa4bc1ae1a52522ae3e8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

Sections

.text Size: 336KB - Virtual size: 332KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 24KB - Virtual size: 21KB

.text
Size: 336KB - Virtual size: 332KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 24KB - Virtual size: 21KB