3192471c1f2416cd6e7473f6e44273ca_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3192471c1f2416cd6e7473f6e44273ca_JaffaCakes118
Size

163KB
MD5

3192471c1f2416cd6e7473f6e44273ca
SHA1

870865ea1165f17b67bdee15ecc04741f59f604d
SHA256

28cf88a4ab3c308043adc66aca41f83576488e8957e8fc2d412de520dd480716
SHA512

754a605959254313e96b8f36f53b362aacec7145aee4e388b4b2b26a5287de0fec8bf3d1e1ed93ed1fd08638fa86001d433ab23dc84e1051a912737986d7e322
SSDEEP

3072:adjuVLgf5ymKq40/z09YPab2cN5C4d0iKqZHq:QQgfX40/z/PQi4d0i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3192471c1f2416cd6e7473f6e44273ca_JaffaCakes118

Files

3192471c1f2416cd6e7473f6e44273ca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a452e27c650e00b2c9e6d0e6f8fb8e85

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindNextChangeNotification
DeleteCriticalSection
InterlockedIncrement
GlobalLock
SetFileAttributesW
GetPrivateProfileIntW
GetFileAttributesW
CreateThread
GetLocaleInfoW
GetSystemTimeAsFileTime
FileTimeToLocalFileTime
ReplaceFileW
WideCharToMultiByte
LockResource
ResumeThread
SetThreadPriority
lstrcmpW
GlobalSize
GetProcessId
QueryPerformanceCounter
lstrcpynW
CloseHandle
GetVersion
GetLastError
FindFirstChangeNotificationW
GetVersionExW
LoadLibraryExW
GetThreadLocale
GetTickCount
FindCloseChangeNotification
LoadLibraryW
EnumResourceTypesA
GetVersionExA
FindResourceW
GetPrivateProfileStringW
GetModuleHandleW
lstrcpyW
GetCurrentThreadId
ExitProcess
GetCurrentDirectoryW
LocalFree
DeleteFileW
InitializeCriticalSection
FreeLibrary
GetModuleFileNameW
InterlockedDecrement
MulDiv
MultiByteToWideChar
lstrlenW
LoadResource
GetProcAddress
Sleep
GlobalFree
FindClose
WaitForSingleObject
FileTimeToSystemTime
LoadLibraryA
GlobalUnlock
WritePrivateProfileStringW
FindFirstFileW
GlobalAlloc
InterlockedExchange
GetACP
GetCurrentProcessId

gdiplus

GdipCreateHBITMAPFromBitmap
GdipCloneImage

shell32

SHGetDesktopFolder
SHGetPathFromIDListW
SHGetMalloc
SHGetSpecialFolderLocation
SHAppBarMessage
ShellExecuteExW
ShellExecuteW
SHBrowseForFolderW
DragAcceptFiles
SHGetFileInfoW
Shell_NotifyIconW

comctl32

ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Add
ImageList_Destroy
InitCommonControlsEx
ImageList_LoadImageW
ImageList_GetImageInfo
ImageList_GetImageCount
_TrackMouseEvent
ImageList_AddMasked
PropertySheetW
ImageList_Draw

gdi32

GetBkColor
SetPixelV
Rectangle
GetTextExtentPoint32W
CreateDIBSection

advapi32

RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegDeleteValueW
RegCreateKeyExW
RegEnumValueW
RegOpenKeyW
RegEnumKeyExW
RegDeleteKeyW
RegCloseKey

user32

ShowWindow
SystemParametersInfoW
IsChild
LoadImageW
IsMenu
SetParent
CloseWindow
EnableWindow
mouse_event
CreateCaret
LockWindowUpdate
DrawFrameControl
GrayStringW
GetMenuDefaultItem
wsprintfW
GetDlgCtrlID
DrawIconEx
GetNextDlgTabItem
DrawTextExW
UnionRect
EndDeferWindowPos
SetMenuDefaultItem
FindWindowW
SetClipboardData
GetIconInfo
GetForegroundWindow
LoadIconW
IntersectRect
GetWindowPlacement
SetWindowPos
MapVirtualKeyExW
SetWindowsHookExW
IsWindow
CloseClipboard
LoadBitmapW
AppendMenuW
TrackPopupMenu
GetScrollPos
DeleteMenu
TranslateMessage
UpdateWindow
GetDC
GetWindow
SetMenu
InflateRect
SendMessageW
GetWindowTextW
BringWindowToTop
GetMenuItemInfoW
GetMessageW
DrawEdge
EnableMenuItem
GetScrollInfo
GetClassNameW
GetSysColorBrush
GetSysColor
PeekMessageW
LoadCursorW
CopyRect
GetKeyNameTextW
GetMenu
IsRectEmpty
SetCursorPos
GetFocus
GetWindowRect
GetMenuItemCount
GetClassLongW
SetFocus
ReleaseCapture
EmptyClipboard
EnableScrollBar
SetCursor
PtInRect
FillRect
IsIconic
ShowCaret
GetLastActivePopup
ShowScrollBar
GetParent
GetTabbedTextExtentW
RedrawWindow
CopyIcon
GetKeyState
TabbedTextOutW
CheckMenuItem
GetKeyboardLayout
RegisterClipboardFormatW
PostMessageW
SetWindowRgn
GetCursor
MapWindowPoints
IsCharLowerW
WindowFromPoint
DrawTextW
SetForegroundWindow
SetWindowLongW
CopyAcceleratorTableW
DrawIcon
GetCapture
ReleaseDC
DrawAnimatedRects
GetSystemMenu
UnhookWindowsHookEx
SetRect
SetScrollInfo
IsWindowVisible
MessageBeep
GetClientRect
DrawStateW
GetSubMenu
DestroyWindow
HideCaret
DragDetect
MapVirtualKeyW
DestroyAcceleratorTable
CallWindowProcW
InvalidateRect
SetCapture
DestroyCursor
SetScrollPos
ClientToScreen
RegisterWindowMessageW
GetMenuItemID
CreatePopupMenu
CallNextHookEx
GetClipboardData
OpenClipboard
GetCursorPos
GetDCEx
OffsetRect
IsClipboardFormatAvailable
SystemParametersInfoA
LoadMenuW
CreateIconIndirect
SetCaretPos
EqualRect
BeginDeferWindowPos
GetWindowLongW
KillTimer
SetRectEmpty
DestroyCaret
IsZoomed
SetTimer
GetMenuState
GetDlgItem
ScreenToClient
GetDesktopWindow
DestroyIcon
MoveWindow
SetActiveWindow
DispatchMessageW
DeferWindowPos
InsertMenuW
EnumChildWindows
GetMessagePos
CreateAcceleratorTableW
DrawFocusRect
GetSystemMetrics
GetActiveWindow
DestroyMenu

ole32

DoDragDrop
CoCreateInstance
OleRun

Sections

.text
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a452e27c650e00b2c9e6d0e6f8fb8e85

Headers

File Characteristics

Imports

kernel32

gdiplus

shell32

comctl32

gdi32

advapi32

user32

ole32

Sections

.text Size: 92KB - Virtual size: 92KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 62KB - Virtual size: 61KB

.tls Size: 1024B - Virtual size: 92KB

.text
Size: 92KB - Virtual size: 92KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 62KB - Virtual size: 61KB

.tls
Size: 1024B - Virtual size: 92KB