2dd687b28b09ddbba4b86aa4651aee3e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2dd687b28b09ddbba4b86aa4651aee3e_JaffaCakes118
Size

340KB
MD5

2dd687b28b09ddbba4b86aa4651aee3e
SHA1

566420c91b597a8245d76b841134cbe07c264d30
SHA256

d9e2e9167249c5d3d5288e263969d47c6dd0c3fce291f097eacce398189902da
SHA512

89085b81960eac0b68b1a5e0f37941c2008ccf14613885cd403691b3719065560c379555bf41ddb1827629bb3f8dda12bb013a55057b842e479ac7c10147a99c
SSDEEP

6144:6aq2pQBS1cL+3nZb8abe1o/tWG9r5C+L7/MnTp2WHym9rhcg6AhAk7KXJiE:lpXD3np5e0WGvCWb2pAliQJiE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2dd687b28b09ddbba4b86aa4651aee3e_JaffaCakes118

Files

2dd687b28b09ddbba4b86aa4651aee3e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e50fb659d427c88de977d41fd1e52bbd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
VirtualProtect
ReleaseMutex
SetProcessShutdownParameters
LoadLibraryA
FindNextChangeNotification
GetLocaleInfoA
GlobalFindAtomW
SetCommState
FindNextFileA
GetTimeFormatA
CreateSemaphoreW
GetACP
_lcreat
GetTimeFormatW
GetNumberFormatA
GetNumberOfConsoleInputEvents
GetModuleFileNameA
ConnectNamedPipe
SwitchToThread
SetStdHandle
VirtualAlloc
_lclose
ExitProcess
GetCPInfo
GetCommandLineA

user32

GetMenuItemInfoA
SetMenuInfo
SetWinEventHook
CheckDlgButton
GetWindowRgn
CharToOemA
CharLowerBuffA
TranslateAcceleratorA
CallNextHookEx
VkKeyScanW
SetMenuItemBitmaps
IsCharLowerW
ToUnicodeEx
GetClipboardFormatNameA
GetMenuDefaultItem
IsCharUpperW
SetActiveWindow
wvsprintfA
GetClassLongA
ShowScrollBar
SubtractRect
OffsetRect
MapVirtualKeyExW
CopyRect
GetMenuStringW
GetClientRect
OemToCharA
GetMenuState
IsDialogMessageA
GetMessageW
IsCharAlphaNumericA
GetDC
ExcludeUpdateRgn
ReleaseCapture
BeginPaint
LoadAcceleratorsA
CharUpperBuffW
CheckMenuRadioItem
GetTabbedTextExtentW
GetMenu
IsCharAlphaW
GetWindowLongA
GetDesktopWindow
GetSysColorBrush
wsprintfA
GetKeyboardState
GetMenuItemCount
UpdateWindow
PostMessageA
RegisterDeviceNotificationA
SetWindowWord
DeleteMenu

gdi32

PathToRegion
Polygon
Ellipse
CreateDCA
GetTextExtentPoint32W
GetCharWidth32W
CopyMetaFileA
CloseMetaFile
SetTextCharacterExtra
StartDocW
UnrealizeObject
PtVisible

comdlg32

GetOpenFileNameW
FindTextA
ChooseColorA

advapi32

RegEnumKeyExA
EnumDependentServicesW
CryptAcquireContextW
RegEnumKeyW
SetSecurityDescriptorDacl
GetSidSubAuthority
QueryServiceConfigW
GetAclInformation
SetFileSecurityW
SetEntriesInAclA
MakeSelfRelativeSD
ImpersonateNamedPipeClient
StartServiceW
ReportEventA
StartServiceA
RegRestoreKeyA
SetEntriesInAclW
ReportEventW
RegUnLoadKeyW
RegCreateKeyA
DeregisterEventSource
LookupPrivilegeDisplayNameA
RegSetKeySecurity
EnumServicesStatusW
GetSecurityDescriptorLength
CryptHashData
SetServiceStatus
CryptSetProvParam
RegisterServiceCtrlHandlerW

shell32

SHGetSpecialFolderPathA

ole32

SetConvertStg
CoCreateGuid
CoQueryProxyBlanket
CoCreateFreeThreadedMarshaler
CoRevokeMallocSpy

oleaut32

LoadTypeLibEx
SafeArrayGetElement

comctl32

ImageList_SetImageCount

shlwapi

PathCanonicalizeA
PathCombineW
PathFindFileNameW
StrChrIA
StrCatBuffW
SHOpenRegStream2W
StrCmpNIA
PathIsRelativeW
StrToIntExW
StrRStrIW
SHDeleteKeyA
SHCreateStreamOnFileW
ChrCmpIW
HashData

setupapi

SetupDiSetSelectedDevice
SetupInstallFromInfSectionW
SetupDiGetDeviceRegistryPropertyA
SetupOpenAppendInfFileA
SetupDiSetDeviceRegistryPropertyA
SetupDiEnumDriverInfoW
SetupDiGetDriverInfoDetailW
SetupLogErrorA
SetupDiSetSelectedDriverA
SetupOpenFileQueue

Sections

.text
Size: 304KB - Virtual size: 300KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e50fb659d427c88de977d41fd1e52bbd

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

setupapi

Sections

.text Size: 304KB - Virtual size: 300KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 24KB - Virtual size: 21KB

.text
Size: 304KB - Virtual size: 300KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 24KB - Virtual size: 21KB