278499ee6f191ac6f2c489c0be0939c4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

278499ee6f191ac6f2c489c0be0939c4_JaffaCakes118
Size

432KB
MD5

278499ee6f191ac6f2c489c0be0939c4
SHA1

0bc2eeb859064f13d6f1517005803d772f6afb08
SHA256

291aa6f8896e951fd8c4358608cdd8faf52c0dbca46011e1bfc75970cf0d2c3a
SHA512

9e756637b3a6e4dc7fa0697e2439f240d5b3034e081d06ee45dcfc8971822b31d479184efe16c8f05c5674be4309c2fba7658d96cf62e3a881525c0747346325
SSDEEP

12288:ezXlxM3oNQo27Tg/YZeLZbLJvzwdspxGgQOv:UVxVeoaveLBdrwCTGtOv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
278499ee6f191ac6f2c489c0be0939c4_JaffaCakes118

Files

278499ee6f191ac6f2c489c0be0939c4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bdb95436ec28b5aba188700aea45015c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\adgwe.pdb

Imports

comctl32

ImageList_GetIcon
ImageList_GetBkColor
DrawStatusText
DrawInsert
ImageList_DragLeave
DestroyPropertySheetPage
ImageList_SetFilter
InitCommonControlsEx
ImageList_Remove
ImageList_DrawIndirect
ImageList_EndDrag
ImageList_SetFlags
ImageList_GetIconSize
CreateMappedBitmap

shell32

ExtractAssociatedIconA
SHFileOperationW
SHAppBarMessage
SheChangeDirA

comdlg32

PageSetupDlgW

kernel32

GetPrivateProfileSectionA
HeapReAlloc
SetCurrentDirectoryW
LoadLibraryA
HeapFree
IsValidLocale
TlsSetValue
GetFileAttributesExA
GetProcAddress
MoveFileA
GetModuleHandleA
GetDateFormatA
CreateEventW
lstrcmpW
WaitForSingleObjectEx
HeapDestroy
CreateDirectoryA
VirtualFree
FlushFileBuffers
GetSystemTimeAsFileTime
LCMapStringA
GetDriveTypeA
GetStartupInfoA
FindNextChangeNotification
VirtualAlloc
QueryPerformanceCounter
SleepEx
TlsGetValue
GetOEMCP
GlobalFindAtomA
DeleteFileA
CreateMutexA
SetHandleCount
GetModuleFileNameA
IsValidCodePage
SetStdHandle
CreateSemaphoreW
FreeEnvironmentStringsW
SetConsoleCtrlHandler
LeaveCriticalSection
ExpandEnvironmentStringsA
GetLocaleInfoA
RtlUnwind
GetACP
SetCurrentDirectoryA
ReadFile
RtlMoveMemory
GlobalUnfix
VirtualProtect
GetTimeFormatA
WriteFile
GetEnvironmentStringsW
GetVersionExA
OutputDebugStringA
InitializeCriticalSection
SetThreadPriority
SetFilePointer
GetStringTypeA
GetCPInfo
GetCurrentProcessId
GetStdHandle
GetLastError
FreeEnvironmentStringsA
GetCurrentThreadId
HeapSize
SetConsoleTextAttribute
RemoveDirectoryA
HeapAlloc
GetUserDefaultLCID
CloseHandle
SetComputerNameA
IsBadWritePtr
LCMapStringW
LockFile
ContinueDebugEvent
GetCommandLineA
EnumSystemLocalesA
OpenMutexA
GetStringTypeW
WideCharToMultiByte
ReadConsoleA
OpenWaitableTimerA
TlsAlloc
GetVolumeInformationA
lstrcmpA
ExitProcess
lstrcpynA
GetConsoleOutputCP
WriteProfileSectionA
OpenEventW
UnhandledExceptionFilter
HeapCreate
CompareStringW
VirtualQuery
RtlZeroMemory
WritePrivateProfileStringW
CreateFileMappingA
GetSystemInfo
EnumDateFormatsA
GetTickCount
CompareStringA
GetNamedPipeHandleStateA
SetEnvironmentVariableA
FindNextFileW
InterlockedExchange
SetConsoleWindowInfo
FormatMessageA
GetCurrentProcess
TlsFree
AddAtomA
SetFileAttributesA
GetPrivateProfileStructA
GetEnvironmentStrings
GetLocaleInfoW
GetLocalTime
GetFileType
GetProfileIntA
TerminateProcess
CreateSemaphoreA
GetProfileStringW
GetPrivateProfileSectionW
SetFileTime
SetLastError
MultiByteToWideChar
DeleteCriticalSection
GetCurrentThread
FindNextFileA
GetTimeZoneInformation
EnterCriticalSection

gdi32

SetColorAdjustment
CopyEnhMetaFileW
SetPaletteEntries
CreateDIBitmap
CreateDCA
SetWorldTransform
Pie
CreateDCW
GetNearestPaletteIndex
GetOutlineTextMetricsA
CreatePolygonRgn
GetLayout
OffsetViewportOrgEx
GetMiterLimit
InvertRgn
DeleteObject
DeleteDC
ExtTextOutW
GetObjectW
GetDeviceCaps
IntersectClipRect
FixBrushOrgEx
TextOutW
GetPath

user32

SetFocus
CreateCursor
GetClassLongA
CreateDesktopW
GetCaretBlinkTime
EnumDisplayMonitors
GetClassInfoExW
RemoveMenu
RegisterClassExA
DrawFocusRect
IsDlgButtonChecked
SetClipboardViewer
CreateDesktopA
GetClassNameW
MsgWaitForMultipleObjectsEx
DlgDirListW
ChildWindowFromPointEx
DlgDirSelectExA
GetWindowTextLengthA
SendDlgItemMessageW
GetWindowInfo
LoadMenuIndirectA
BringWindowToTop
RegisterClassA
DialogBoxParamA
LoadStringA
GetClipboardViewer
DdeConnect

Sections

.text
Size: 160KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 128KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bdb95436ec28b5aba188700aea45015c

Headers

File Characteristics

PDB Paths

Imports

comctl32

shell32

comdlg32

kernel32

gdi32

user32

Sections

.text Size: 160KB - Virtual size: 157KB

.rdata Size: 128KB - Virtual size: 126KB

.data Size: 100KB - Virtual size: 118KB

.rsrc Size: 40KB - Virtual size: 36KB

.text
Size: 160KB - Virtual size: 157KB

.rdata
Size: 128KB - Virtual size: 126KB

.data
Size: 100KB - Virtual size: 118KB

.rsrc
Size: 40KB - Virtual size: 36KB