27c4faf38235cfc13537f8a2430d846a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

27c4faf38235cfc13537f8a2430d846a_JaffaCakes118
Size

286KB
MD5

27c4faf38235cfc13537f8a2430d846a
SHA1

eeae586637fd0fd1bca02bebf15dea789d321915
SHA256

3c819970e0a3724b9e151ce3d24c26497c736807f95276a8df898de76db5e7ae
SHA512

79b13a09fcd1c481dbf1c3311085828da36899ea5df57eaa2c2b4b56c9971e303e8c07207521c1b9122aa6ad5ec038f38e249d3a8c7e619ec0a99e0c38377d18
SSDEEP

6144:dJunUis3DfDuaugADxrkY6GaPHGza7nOxpUDi61oP0yt:dJunBszDCtrnWPGza7nOxkGPV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27c4faf38235cfc13537f8a2430d846a_JaffaCakes118

Files

27c4faf38235cfc13537f8a2430d846a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

572b5f56f4c5db905b6b55b911022a03

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_GetIconSize
InitCommonControlsEx
CreateStatusWindowA
GetEffectiveClientRect
ImageList_DrawEx
ImageList_GetImageCount
ImageList_LoadImageW
DrawInsert
DrawStatusTextW
ImageList_DragLeave
ImageList_Draw
ImageList_Replace

kernel32

FindNextChangeNotification
GetPrivateProfileSectionW
GetDiskFreeSpaceExW
GetModuleFileNameA
GetCurrentThread
WaitForDebugEvent
LCMapStringW
ReadFile
CreateThread
GetCPInfo
OpenMutexW
GetCurrentThreadId
QueryPerformanceCounter
OutputDebugStringA
VirtualAlloc
GetModuleFileNameW
GetCurrentProcessId
GetStdHandle
FlushFileBuffers
GetVersion
SetCurrentDirectoryW
SetFileAttributesW
CreateEventW
LocalShrink
RtlZeroMemory
GetTickCount
CreateNamedPipeW
ExitProcess
GetProfileStringW
GlobalAddAtomA
GetPrivateProfileStructA
GlobalAddAtomW
MapViewOfFile
DeleteCriticalSection
FillConsoleOutputAttribute
GetCommandLineW
HeapReAlloc
GetCommandLineA
EnumCalendarInfoExA
GetTempPathW
TlsAlloc
SetLastError
HeapAlloc
GetSystemTimeAsFileTime
LCMapStringA
UnhandledExceptionFilter
OpenProcess
OpenSemaphoreA
CompareStringW
FlushViewOfFile
SetStdHandle
lstrcmpiW
GetModuleHandleA
WideCharToMultiByte
GetConsoleCP
CommConfigDialogA
GetStringTypeExW
GetLocalTime
HeapCreate
RtlUnwind
GetStartupInfoW
InterlockedIncrement
GetLastError
FindResourceExW
TlsFree
GetNamedPipeHandleStateW
GetProcAddress
TlsGetValue
LeaveCriticalSection
MoveFileW
WaitNamedPipeA
CreateFileMappingA
FreeEnvironmentStringsW
EnumDateFormatsA
FindNextFileW
SetEndOfFile
ConvertDefaultLocale
GetTimeFormatA
GetFileSize
FoldStringA
TlsSetValue
VirtualFree
DebugBreak
CompareFileTime
SetConsoleCursorPosition
GetFullPathNameA
GetVolumeInformationA
GetEnvironmentStringsW
GetStringTypeW
GetUserDefaultLCID
GetFileType
CloseHandle
HeapDestroy
InterlockedExchange
CreateMutexA
LoadLibraryA
CopyFileA
CompareStringA
EnterCriticalSection
SetFilePointer
GlobalHandle
GetStringTypeA
GetStartupInfoA
CreateFileMappingW
MultiByteToWideChar
GetSystemTime
GetTimeZoneInformation
GetEnvironmentStrings
SetEnvironmentVariableA
IsBadWritePtr
ReadConsoleOutputW
EnumDateFormatsExA
EnumResourceTypesW
WaitForSingleObject
WriteConsoleOutputAttribute
HeapSize
CreateSemaphoreA
OpenMutexA
SetLocaleInfoW
SetHandleCount
HeapFree
FreeEnvironmentStringsA
VirtualFreeEx
VirtualQuery
GetCurrentProcess
GetThreadContext
TerminateProcess
InterlockedDecrement
WriteFile
EnumSystemLocalesA
FormatMessageW
InitializeCriticalSection
GetConsoleCursorInfo

user32

EndDeferWindowPos
SetCapture
SetMenuContextHelpId
SetMenuItemBitmaps
SetScrollPos
FrameRect
GetDialogBaseUnits
SetTimer
ReplyMessage
MoveWindow
GetCaretBlinkTime
MapDialogRect
GetScrollInfo
EnableScrollBar
CountClipboardFormats
RegisterClassExA
DrawTextW
WINNLSGetEnableStatus
GetClipboardFormatNameA
LockWindowUpdate
LoadAcceleratorsW
DdeKeepStringHandle
LoadCursorW
TranslateAcceleratorA
DdeReconnect
DragDetect
SwitchDesktop
RegisterClassA
RegisterClipboardFormatA
GetClassInfoA
GetCursorInfo
LoadStringA
OemKeyScan
LoadMenuIndirectW
PeekMessageW
RemoveMenu
IsCharUpperA
DlgDirSelectExW
SetClassLongW

Sections

.text
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

572b5f56f4c5db905b6b55b911022a03

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 65KB - Virtual size: 65KB

.rdata Size: 93KB - Virtual size: 93KB

.data Size: 84KB - Virtual size: 109KB

.rsrc Size: 42KB - Virtual size: 41KB

.text
Size: 65KB - Virtual size: 65KB

.rdata
Size: 93KB - Virtual size: 93KB

.data
Size: 84KB - Virtual size: 109KB

.rsrc
Size: 42KB - Virtual size: 41KB