2790aa9f3cb7861bcca6d9da7f743f35_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2790aa9f3cb7861bcca6d9da7f743f35_JaffaCakes118
Size

409KB
MD5

2790aa9f3cb7861bcca6d9da7f743f35
SHA1

294b880fa048569c384888491ba3df082128c3d8
SHA256

59817653b985e05b933b0a3d3be8fa34630b03eadc3f5e6ca1a1545a03b19a1d
SHA512

9f4afac64c740c40d6c54a5560070ebf96780bbea2d00ec3391a807b02d2b2a2afaa15214b2e471289f1ce5c801b6cb0f3d90193c18b3e58ea6860af4153f9db
SSDEEP

6144:MKlfIuKGbNf/EnyU8+Qa4gNoBDZWqzljIjyw6g6zstlsad3NzFVev2+:MKlfIHGbNf6Ula4dBlvBIflsuRvev2+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2790aa9f3cb7861bcca6d9da7f743f35_JaffaCakes118

Files

2790aa9f3cb7861bcca6d9da7f743f35_JaffaCakes118
.exe windows:4 windows x86 arch:x86

771565c7e6e7414bd75e31e750bf5a33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx
ImageList_DragEnter
ImageList_SetIconSize
CreateToolbarEx
ImageList_LoadImageA

kernel32

GetUserDefaultLCID
GetStartupInfoW
AddAtomW
ReadConsoleOutputCharacterA
SetEnvironmentVariableA
WritePrivateProfileStructW
TransmitCommChar
IsBadReadPtr
SetWaitableTimer
GetStdHandle
GetStringTypeA
GetThreadSelectorEntry
VirtualAlloc
SetStdHandle
VirtualFree
FreeEnvironmentStringsA
SetCurrentDirectoryW
EnterCriticalSection
GetAtomNameW
CompareStringA
GetCommandLineW
GetFileTime
EnumResourceTypesA
GetLocaleInfoW
InterlockedExchange
CloseHandle
WriteProfileSectionA
OpenMutexA
WriteConsoleInputW
LeaveCriticalSection
SetConsoleCtrlHandler
SetTimeZoneInformation
SetLocaleInfoW
GetMailslotInfo
LCMapStringW
HeapValidate
HeapReAlloc
HeapDestroy
ExitProcess
GetSystemInfo
GetCurrentDirectoryW
GetACP
InterlockedIncrement
WideCharToMultiByte
OpenEventW
SetConsoleWindowInfo
FlushFileBuffers
LockFile
GetSystemTimeAsFileTime
CommConfigDialogA
FlushInstructionCache
LoadLibraryExW
GetSystemDefaultLCID
DeleteAtom
GetStringTypeW
CreateMutexA
TlsAlloc
FileTimeToLocalFileTime
GetCPInfo
IsValidCodePage
GetCurrentThreadId
GetWindowsDirectoryA
FreeEnvironmentStringsW
IsDebuggerPresent
GetLocaleInfoA
TlsGetValue
GetCommandLineA
LocalCompact
HeapCreate
UnhandledExceptionFilter
QueryPerformanceCounter
CreateMailslotA
SetComputerNameW
LCMapStringA
MultiByteToWideChar
GetFileType
TerminateProcess
SetLastError
GetCurrentProcess
GetModuleFileNameW
TransactNamedPipe
TlsFree
CreateMailslotW
GetLastError
ReadFile
OutputDebugStringA
GetEnvironmentStringsW
CompareStringW
GetProcAddress
DebugBreak
CreateNamedPipeA
SetComputerNameA
SetHandleCount
GlobalAddAtomW
GetTimeZoneInformation
lstrcpy
GetTickCount
FindResourceA
WritePrivateProfileStructA
GlobalFree
VirtualQuery
GetPrivateProfileIntW
GetModuleHandleA
lstrcpyn
GetSystemDirectoryW
RemoveDirectoryA
WriteFile
SystemTimeToTzSpecificLocalTime
LocalShrink
TlsSetValue
GetTimeFormatA
DeleteCriticalSection
GlobalUnlock
GetDateFormatA
WriteProfileStringA
GetEnvironmentStrings
GetVersion
EnumCalendarInfoW
HeapAlloc
IsValidLocale
WaitNamedPipeA
SetFilePointer
GetOEMCP
FillConsoleOutputAttribute
HeapFree
ResetEvent
CreateMutexW
LoadModule
GetExitCodeThread
CreateDirectoryExA
InitializeCriticalSection
SetConsoleTitleW
GetCurrentThread
EnumSystemLocalesA
IsBadWritePtr
GetVersionExA
GetCurrentProcessId
VirtualProtect
RtlUnwind
InterlockedDecrement
WritePrivateProfileSectionA
GetModuleFileNameA
GetNamedPipeHandleStateA
ConnectNamedPipe
WriteConsoleOutputCharacterA
EnumResourceNamesW
SetConsoleCP
GetThreadPriority
LoadLibraryA
GetStartupInfoA

advapi32

InitiateSystemShutdownA
AbortSystemShutdownA
RegQueryValueExW
CryptGenKey
RegSetValueExW
RegQueryInfoKeyA
RegSaveKeyA
CryptReleaseContext

gdi32

GetClipBox
DeviceCapabilitiesExW
GetViewportOrgEx
EndPage
SetMiterLimit
GetKerningPairsW
CreateBitmap
GetObjectW
CreateDiscardableBitmap
DeleteDC
SetWinMetaFileBits
DeleteObject
CreateICW
GetRgnBox
PlgBlt
GetTextCharset
ExtTextOutW
PaintRgn
CopyMetaFileA
GetDeviceCaps
CreateDCW
GetStockObject
SetArcDirection
PolylineTo

user32

GetClassNameW
EnumDisplaySettingsA
EndTask
SetActiveWindow
CloseWindow
ToUnicode
CharUpperBuffW
GetMenuItemCount
GetKeyNameTextW
LoadMenuW
EditWndProc
DdeInitializeA
InvertRect
GetSystemMetrics
IsClipboardFormatAvailable
OpenDesktopA
DlgDirListW
RegisterClipboardFormatA
RegisterClassExA
EnableMenuItem
TileWindows
GetDoubleClickTime
GetWindowThreadProcessId
ChildWindowFromPoint
GetClassInfoExW
GetUpdateRgn
ShowWindowAsync
DdeCreateStringHandleA
SetClipboardViewer
RegisterClassA
DialogBoxIndirectParamA
BeginPaint

comdlg32

PrintDlgA

Sections

.text
Size: 182KB - Virtual size: 182KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

771565c7e6e7414bd75e31e750bf5a33

Headers

File Characteristics

Imports

comctl32

kernel32

advapi32

gdi32

user32

comdlg32

Sections

.text Size: 182KB - Virtual size: 182KB

.rdata Size: 76KB - Virtual size: 76KB

.data Size: 92KB - Virtual size: 120KB

.rsrc Size: 56KB - Virtual size: 56KB

.text
Size: 182KB - Virtual size: 182KB

.rdata
Size: 76KB - Virtual size: 76KB

.data
Size: 92KB - Virtual size: 120KB

.rsrc
Size: 56KB - Virtual size: 56KB