28f56c6741cbd984ab1a9f777966571e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

28f56c6741cbd984ab1a9f777966571e_JaffaCakes118
Size

166KB
MD5

28f56c6741cbd984ab1a9f777966571e
SHA1

4f50e481e4d233dc919375ff6e5a193829f83cd9
SHA256

2e1b111d757ff76f44e3898f87dd73faf0436dfc60bd2f82cd09f03e32d669fc
SHA512

2a78bf6e8e3cd8f4ea8e44daf073a82c04d928fbdcfccb7ff5f1ffc47312369a311450f25905bcd6798c13910ed5e95832b70f4edb507e03647c00eb59753e43
SSDEEP

3072:JoXMttz7nAe9Tn18W4jJk1Gk8+OAn9GdzqwwmwpS2bWpLu9V2DO2z7UNdY9oXDAO:Jo8tVjAeXRx1o+j9GdyS/YQDO2zP9oXV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28f56c6741cbd984ab1a9f777966571e_JaffaCakes118

Files

28f56c6741cbd984ab1a9f777966571e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aa9e88fcd6c3871b40ccb7867542a69c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

ole32

CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CoUninitialize
CoCreateInstance
CoInitialize

kernel32

lstrcmpA
GetCurrentProcessId
LoadResource
SetStdHandle
InterlockedExchange
TlsAlloc
GetModuleFileNameW
CreateFileA
WriteConsoleInputVDMA
WaitForSingleObject
FlushFileBuffers
GetFileAttributesW
SetFilePointer
GetConsoleCP
LockResource
SizeofResource
WriteConsoleA
GetStringTypeA
HeapReAlloc
LeaveCriticalSection
CreateFileMappingW
CloseHandle
LocalFree
GetConsoleOutputCP
Sleep
GetConsoleMode
GetProcAddress
FreeLibrary
LCMapStringA
GetFileSize
GetACP
WriteConsoleW
GetCommandLineW
WriteFile
TlsFree
GetStringTypeW
InterlockedCompareExchange
QueryPerformanceCounter
GetEnvironmentStringsW
GetProcessHandleCount
GetCurrentProcess
HeapDestroy
LoadLibraryW
VirtualFree
ExitProcess
MulDiv
GetVersionExW
GetCurrentThreadId
EnumResourceNamesA
GetThreadLocale
GetSystemTimeAsFileTime
DeleteCriticalSection
GetStartupInfoA
GetEnvironmentStrings
DeleteFileW
HeapFree
GetFileType
GetCPInfo
IsProcessorFeaturePresent
LocalAlloc
GetTickCount
GetLocaleInfoA
FindResourceW
CreateSemaphoreW
HeapCreate
GetSystemDirectoryW
GetVersion
lstrcmpiW
LoadLibraryExW
CopyFileW
GetModuleFileNameA
GetModuleHandleW
IsDebuggerPresent
GetProcessHeap
FlushInstructionCache
HeapAlloc
WideCharToMultiByte
VirtualAlloc
SetLastError
InitializeCriticalSection
GetStartupInfoW
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetOEMCP
HeapSize
SetUnhandledExceptionFilter
InterlockedDecrement
UnhandledExceptionFilter
GetDriveTypeW
lstrlenA
InterlockedIncrement
CreateFileW
RtlUnwind
GetModuleHandleA
RaiseException
ReadFile
CreateProcessW
LCMapStringW
TlsGetValue
GetLastError
WritePrivateProfileSectionW
GetStdHandle
SetHandleCount
GetVersionExA
GetCommandLineA
TlsSetValue
LoadLibraryA
lstrlenW

shell32

SHGetSpecialFolderLocation
ShellExecuteW
SHGetPathFromIDListW

user32

TranslateMessage
GetWindowTextLengthW
PeekMessageW
LoadCursorW
GetWindow
SetWindowPos
GetWindowInfo
SetDlgItemTextW
DispatchMessageW
GetDlgItem
GetDC
DestroyWindow
RegisterClassExW
SystemParametersInfoW
GetParent
SetCapture
EndPaint
BeginPaint
GetClientRect
GetClassInfoExW
GetDlgItemTextW
SetWindowTextW
MessageBoxW
MapWindowPoints
CreateWindowExW
GetWindowRect
EndDialog

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idive
Size: 1024B - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aa9e88fcd6c3871b40ccb7867542a69c

Headers

File Characteristics

Imports

oleacc

gdi32

version

ole32

kernel32

shell32

user32

Sections

.text Size: 89KB - Virtual size: 88KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 71KB - Virtual size: 70KB

.idive Size: 1024B - Virtual size: 376KB

.text
Size: 89KB - Virtual size: 88KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 71KB - Virtual size: 70KB

.idive
Size: 1024B - Virtual size: 376KB