27c5fc5543299b282d963e35de1bd82b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

27c5fc5543299b282d963e35de1bd82b_JaffaCakes118
Size

163KB
MD5

27c5fc5543299b282d963e35de1bd82b
SHA1

6c71f21875b2ddd7246fc710bede10ad864e25ba
SHA256

c4786a9bd6d435b9d1f7e15806814fa2965b96a145817a1fefc4a48d05b3b90c
SHA512

7b7203a43e5584685ddfc78ece7ea6657dab9d1b11c99cfda1f1147322275ed5614cd882f1a4e385894e6f139adcef76bf8990ed25d4e0892096040bc54ca930
SSDEEP

3072:IxYxOZyl/IMwLhqbCJ1kZlb/dmb1g29maJrs5/HTYHEAM8r:IxAyLlqg1kZ+nXatfAf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27c5fc5543299b282d963e35de1bd82b_JaffaCakes118

Files

27c5fc5543299b282d963e35de1bd82b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

393e6824ac8dd67c481787f38b232254

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegQueryInfoKeyW
RegQueryValueExW
RegCloseKey
RegEnumKeyW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegDeleteKeyA

gdi32

StretchBlt
ExtCreateRegion
DeleteDC
GetObjectW
GetTextMetricsW
CreateCompatibleBitmap
MoveToEx
LineTo
CreateCompatibleDC
CombineRgn
SetBkMode
DeleteObject
SetTextColor
SetViewportOrgEx
BitBlt
GetDeviceCaps
CreatePen
SetBkColor
SetViewportExtEx
SelectObject
CreateSolidBrush
GetCharWidthW
CreateFontW
CreateDIBSection
CreateDCW
CreatePatternBrush
GetStockObject

shell32

ShellExecuteW

kernel32

CreateProcessW
GetVDMCurrentDirectories
GetCurrentProcessId
WriteFile
ExitProcess
GetUserDefaultUILanguage
MoveFileW
SetThreadPriorityBoost
FreeLibrary
GetModuleHandleA
LoadLibraryW
EnumResourceNamesW
ReadFile
OutputDebugStringW
FindClose
MultiByteToWideChar
DeleteFileW
WideCharToMultiByte
SetUnhandledExceptionFilter
HeapAlloc
GetProcAddress
GetLocalTime
SetFilePointer
CreateFileA
FindFirstFileW
HeapFree

msvfw32

ICInfo

comctl32

ImageList_Create
ImageList_ReplaceIcon
ImageList_Draw
ImageList_Destroy

user32

GetMenuStringW
GetDlgItem
GetWindowLongW
GetWindowInfo
SetWindowTextW
GetSysColor
GetWindowRect
SetWindowsHookExW
AdjustWindowRect
MessageBoxW
SetRect
MoveWindow
EndDialog
SendMessageW

comdlg32

GetSaveFileNameW

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 1024B - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

393e6824ac8dd67c481787f38b232254

Headers

File Characteristics

Imports

advapi32

gdi32

shell32

kernel32

msvfw32

comctl32

user32

comdlg32

Sections

.text Size: 100KB - Virtual size: 100KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 58KB - Virtual size: 58KB

.imul Size: 1024B - Virtual size: 244KB

.text
Size: 100KB - Virtual size: 100KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 58KB - Virtual size: 58KB

.imul
Size: 1024B - Virtual size: 244KB