288af1b7ba70821b339c7a7f0f5011fa_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

288af1b7ba70821b339c7a7f0f5011fa_JaffaCakes118
Size

324KB
MD5

288af1b7ba70821b339c7a7f0f5011fa
SHA1

5a80a574288bafd4d0c3d89d65c83dcb61d82c0a
SHA256

6ceb09f8b21232dcba44549d1086bbf4271a1511733527b3b77b96d7fff142b7
SHA512

37bc1c38d71f530581b92e6a8afa17d56a907236e91ef7eaac60a0b1e56cb8da31544f6cfd8652bd4765a0e88d5f1d15cb43edbbf848e3a3d25a57db153382b8
SSDEEP

6144:PSRLPRHcIvcvWFdpTil+0OTIx5DfwfFblJh3TLzZTOrxXrQ2v:aRrcvW3ShYIYlD3Za98

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
288af1b7ba70821b339c7a7f0f5011fa_JaffaCakes118

Files

288af1b7ba70821b339c7a7f0f5011fa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

24437ab705f7e90788aeeaf39f3a82eb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetNumberFormatW
GetTickCount
CreateNamedPipeW
SystemTimeToFileTime
EnumSystemCodePagesW
GetOverlappedResult
GetProcessTimes
SetConsoleMode
GlobalGetAtomNameW
SetTimeZoneInformation
EndUpdateResourceA
OpenSemaphoreW
GetSystemDefaultLangID
GetFileInformationByHandle
GetPrivateProfileSectionW
GetCommandLineW
SetConsoleCursorPosition
SetEnvironmentVariableW
GlobalFindAtomA
SetFileAttributesA
lstrcmpA
SetEndOfFile
VirtualFree
GetStartupInfoA
PulseEvent
ReadFileScatter
CreateMutexA
EnumResourceNamesA
FindNextChangeNotification
LCMapStringA
EnumDateFormatsW
SetNamedPipeHandleState
lstrcmpiA
InitializeCriticalSection
IsBadReadPtr
GetSystemInfo
VirtualUnlock
CreateFileW
GetOEMCP
EnumResourceNamesW
ReadConsoleInputW
CloseHandle
GlobalDeleteAtom
SetThreadLocale
SetupComm
GetLocaleInfoW
PeekConsoleInputW
FileTimeToLocalFileTime
Beep
CreateProcessA
GetLongPathNameA
LocalReAlloc
GetCurrentDirectoryW
QueryDosDeviceW
RemoveDirectoryW
AllocConsole
FreeLibrary
PurgeComm
RemoveDirectoryA
FlushFileBuffers
GetDiskFreeSpaceW
GetLogicalDriveStringsA
VirtualQueryEx
GetThreadContext
OpenFile
FindFirstFileW
CompareStringW
GetCurrentProcess
GetConsoleMode
GetDriveTypeA
GetCommModemStatus
GetDriveTypeW
QueryDosDeviceA
WritePrivateProfileStructA
GlobalUnlock
GetEnvironmentStringsW
FindFirstFileA
LoadLibraryExA
SetCommTimeouts
GetVersionExA
ReadConsoleOutputA
CreateMutexW
EnumCalendarInfoW
DebugBreak
PrepareTape
SetThreadAffinityMask
GetBinaryTypeW
WritePrivateProfileStringW
CreateIoCompletionPort
WriteFile
GetCurrentProcessId
SetProcessWorkingSetSize
TryEnterCriticalSection
GetCommandLineA
lstrlenA
VirtualProtect
OutputDebugStringA
ExitProcess

user32

DispatchMessageW
SetScrollRange
EndMenu
CloseDesktop
SetCapture
CharLowerW
IsIconic
GetSubMenu
SetCaretPos
DrawIconEx
LoadKeyboardLayoutW
InsertMenuA
CreateDesktopW
SendMessageCallbackW
CopyRect
CascadeWindows
EnumDisplaySettingsA
SetKeyboardState
UnhookWinEvent
SetClassLongW
GetDialogBaseUnits
GetWindowTextA
OpenIcon
GrayStringA
IsZoomed
CharUpperBuffW
CreateDialogParamA
MenuItemFromPoint
SetUserObjectSecurity
GetLastActivePopup
SetPropW
LoadCursorW
GetMessageExtraInfo
GetKeyboardLayoutList
TileWindows
ModifyMenuA
UnionRect
WindowFromDC
MessageBoxIndirectW
GetThreadDesktop
CountClipboardFormats
ShowScrollBar
ChangeDisplaySettingsExA
GetCaretPos
PostMessageA
ReplyMessage
BeginDeferWindowPos
ChildWindowFromPointEx
SendDlgItemMessageW
TabbedTextOutW
EnumDisplaySettingsExW
GetDlgItemTextA
RemoveMenu
EnumDisplayDevicesW

gdi32

EnumEnhMetaFile
SetLayout
SetColorAdjustment

comdlg32

ChooseFontW
GetSaveFileNameA

advapi32

CryptSignHashW
ObjectDeleteAuditAlarmW
RegUnLoadKeyA
GetAclInformation
CryptGenKey
CryptVerifySignatureA
UnlockServiceDatabase
InitiateSystemShutdownA
RegisterServiceCtrlHandlerW

shell32

SHGetSpecialFolderPathA
ExtractIconExW

ole32

StgCreateStorageEx
CoUninitialize
CoImpersonateClient
CoFreeAllLibraries
CoReleaseMarshalData

oleaut32

VariantChangeType
QueryPathOfRegTypeLi
SafeArrayGetElement
LoadTypeLi
SysStringLen
SysAllocStringLen
SafeArrayPutElement

comctl32

_TrackMouseEvent
ImageList_LoadImageA
ImageList_BeginDrag

shlwapi

StrChrIA
PathQuoteSpacesA
SHRegCloseUSKey
PathIsFileSpecA
StrFormatKBSizeW
SHRegWriteUSValueW
StrToIntW
SHDeleteKeyW
StrStrIW
StrChrW
SHEnumValueW

setupapi

SetupIterateCabinetW
SetupDiGetDeviceInstanceIdA
SetupDiBuildDriverInfoList

Sections

.text
Size: 304KB - Virtual size: 302KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

24437ab705f7e90788aeeaf39f3a82eb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

setupapi

Sections

.text Size: 304KB - Virtual size: 302KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 4KB

.text
Size: 304KB - Virtual size: 302KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 4KB