3017db4bbbaf0da9d0acf8f41a965d3a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3017db4bbbaf0da9d0acf8f41a965d3a_JaffaCakes118
Size

424KB
MD5

3017db4bbbaf0da9d0acf8f41a965d3a
SHA1

f471d3374d895b63c5996d6df088a59ea0879a42
SHA256

07b95e5f69fd02d11089aa15c17776d1a6076bc2f80e111609db5e1dfc1339f7
SHA512

8036db2171ea62911abc5d42069e21b34a884fd1413efc9856f283c6b424ac30e9f90e9bfde31ed24c835b5bd7e5ca5361c9fdd379c12293ecea50aeaf5d93a4
SSDEEP

6144:2xCZDGTQcOuVEoyQ5X6FNYMI9OOOOOOOJOgIVWTgxLjZL6NlGd17SlL:2xCZDGT1OukQ5XI2EvMxLFL6Nl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3017db4bbbaf0da9d0acf8f41a965d3a_JaffaCakes118

Files

3017db4bbbaf0da9d0acf8f41a965d3a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4a30bdce75f25a321bfbafba8f6bc989

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateDesktopW
ShowWindow
ModifyMenuA
RegisterClassA
CreateDialogParamA
GetClassNameA
GetGUIThreadInfo
LookupIconIdFromDirectory
SetCaretBlinkTime
GetSysColor
SetUserObjectInformationA
DefMDIChildProcW
GetUserObjectSecurity
GetKeyboardLayoutNameW
CascadeWindows
MessageBoxA
GetKeyboardType
ActivateKeyboardLayout
CascadeChildWindows
DefWindowProcA
DestroyCursor
SystemParametersInfoW
IsChild
SetDlgItemTextA
LoadMenuA
EnumChildWindows
CreateWindowExA
MessageBoxExW
GetScrollBarInfo
DdeInitializeW
GetMenuDefaultItem
DestroyWindow
CreateIconFromResource
DrawAnimatedRects
ShowCursor
RegisterClassExA

shell32

DragFinish
InternalExtractIconListA
DragQueryFileA
SHGetSpecialFolderLocation

comctl32

ImageList_LoadImage
ImageList_Read
_TrackMouseEvent
ImageList_Add
ImageList_SetIconSize
ImageList_GetImageRect
ImageList_SetFlags
DestroyPropertySheetPage
InitCommonControlsEx
CreateStatusWindowW
ImageList_SetDragCursorImage
CreatePropertySheetPageA
ImageList_GetBkColor
ImageList_SetOverlayImage

kernel32

LCMapStringW
TlsAlloc
WriteFile
SetFilePointer
CompareStringA
SetLastError
OpenMutexA
LCMapStringA
GetOEMCP
IsBadWritePtr
WriteConsoleA
TerminateProcess
GetFileAttributesA
FreeEnvironmentStringsW
GetTimeZoneInformation
EnterCriticalSection
IsValidLocale
GetEnvironmentStrings
GetEnvironmentStringsW
CloseHandle
DeleteCriticalSection
GetFileType
ExitProcess
GetCPInfo
InitializeCriticalSection
TlsGetValue
LeaveCriticalSection
GetStringTypeW
SetEnvironmentVariableA
GetACP
MapViewOfFile
GetLocaleInfoA
GetModuleHandleA
CompareStringW
GetTimeFormatA
VirtualFree
GetStdHandle
SetStdHandle
CreateMutexA
SetHandleCount
WriteConsoleW
GetProcAddress
WaitCommEvent
GetSystemTimeAsFileTime
TlsFree
GetCommandLineA
GetStartupInfoW
VirtualQuery
UnhandledExceptionFilter
VirtualProtect
GetCurrentProcess
GetVersionExA
SetUnhandledExceptionFilter
GetSystemInfo
HeapReAlloc
GetCurrentThreadId
LockResource
HeapCreate
GetStringTypeA
HeapFree
GetLocaleInfoW
GetLastError
InterlockedExchange
GetCommandLineW
FlushFileBuffers
GetDateFormatA
GetTickCount
WideCharToMultiByte
MultiByteToWideChar
GetCurrentThread
HeapSize
GetUserDefaultLCID
FreeEnvironmentStringsA
FindClose
GetModuleFileNameW
ReadFile
QueryPerformanceCounter
HeapDestroy
GetCurrentDirectoryW
LoadLibraryA
RtlUnwind
TlsSetValue
EnumSystemLocalesA
VirtualAlloc
GetCurrentProcessId
HeapAlloc
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentStringsA
IsValidCodePage

Sections

.text
Size: 141KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 90KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4a30bdce75f25a321bfbafba8f6bc989

Headers

File Characteristics

Imports

user32

shell32

comctl32

kernel32

Sections

.text Size: 141KB - Virtual size: 141KB

.rdata Size: 72KB - Virtual size: 72KB

.data Size: 90KB - Virtual size: 111KB

.rsrc Size: 119KB - Virtual size: 119KB

.text
Size: 141KB - Virtual size: 141KB

.rdata
Size: 72KB - Virtual size: 72KB

.data
Size: 90KB - Virtual size: 111KB

.rsrc
Size: 119KB - Virtual size: 119KB