27fd188b76db3a40268fc74b190d8e67_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

27fd188b76db3a40268fc74b190d8e67_JaffaCakes118
Size

46KB
MD5

27fd188b76db3a40268fc74b190d8e67
SHA1

67f03d4b8b4c96cab6ff3f819e1117e6198727e7
SHA256

1dc1302ad90bd5e6d89700aa39c7dd586ff8cbd09cab8cf44ab0fd47bd98c2b6
SHA512

3feae66de553113d17f21101f9fddaf19366f657fcb42493596ba38f2fdd6757cc8429b109c0bf1e268c806e87bea59f9bebac9c286bed51c8002ae7a96c6e51
SSDEEP

384:Ytr/bfgBT6577bz6RyDWvnfXlyR4SzC+XVGyMb1LQLdw/Y5OwrEnaTN/si204+6:0Mt65DWvf1yR4SWJbZY5OQ1b2+6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27fd188b76db3a40268fc74b190d8e67_JaffaCakes118

Files

27fd188b76db3a40268fc74b190d8e67_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b66163949eec9261413207b576a69101

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
MessageBoxA
GetMessageA
LoadCursorA
SetTimer

ole32

CoInitialize
RevokeDragDrop
CoUninitialize
StgOpenStorage
CreateStreamOnHGlobal
RegisterDragDrop
CreateOleAdviseHolder
CoTaskMemAlloc
ReleaseStgMedium
CoCreateInstance
CoInitializeEx
StgCreateDocfile
CoInitializeSecurity
DoDragDrop

advapi32

RegSetValueExA
RegEnumKeyExA
RegCreateKeyA
RegDeleteKeyA
RegCloseKey
RegQueryInfoKeyA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA

kernel32

GetLocaleInfoW
SetEvent
ExpandEnvironmentStringsW
SetEndOfFile
HeapAlloc
CreateFileMappingW
GetConsoleMode
UnmapViewOfFile
CreateMutexW
MapViewOfFile
CloseHandle
GetSystemTimeAsFileTime
MultiByteToWideChar
LoadLibraryExW
SetFileTime
ReleaseMutex
CreateDirectoryExW
IsDebuggerPresent
VirtualQuery
GetTickCount
CompareStringA
LoadResource
GetCurrentProcessId
UnhandledExceptionFilter
GlobalWire
CreateFileW
GetFileType
lstrcmpA
GetFileTime
WaitForSingleObject
CreateProcessW
HeapFree
SetUnhandledExceptionFilter
DuplicateHandle
GetCurrentThreadId
CreateEventW
CreateTimerQueueTimer
QueryPerformanceCounter
HeapCreate
GetSystemInfo
SetLastError
OpenFileMappingW
GetProfileIntA
InterlockedCompareExchange
FindResourceW
GetStringTypeExA
GetCurrentProcess
GetModuleHandleW
GetModuleFileNameW
HeapDestroy
WideCharToMultiByte
SetErrorMode
InterlockedExchange

comdlg32

CommDlgExtendedError
GetOpenFileNameA

shell32

DragQueryFileW
ShellExecuteA
ShellExecuteW
SHAppBarMessage
DragAcceptFiles
DragQueryFileA

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b66163949eec9261413207b576a69101

Headers

File Characteristics

Imports

user32

ole32

advapi32

kernel32

comdlg32

shell32

Sections

.text Size: 11KB - Virtual size: 11KB

.data Size: 12KB - Virtual size: 22KB

.rsrc Size: 5KB - Virtual size: 5KB

.edata Size: 16KB - Virtual size: 19KB

.text
Size: 11KB - Virtual size: 11KB

.data
Size: 12KB - Virtual size: 22KB

.rsrc
Size: 5KB - Virtual size: 5KB

.edata
Size: 16KB - Virtual size: 19KB