377d8d167fc9bb5fc090c39d7d1ec860_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

377d8d167fc9bb5fc090c39d7d1ec860_JaffaCakes118
Size

452KB
MD5

377d8d167fc9bb5fc090c39d7d1ec860
SHA1

cf979b804752b156c554cba9baa83b13ae781d05
SHA256

9b322d3fcbdab9d20fa8dbf1952f0dfb591b7a3b995d0b282e56323e8f282371
SHA512

ea9371154be424658313f09eb49cd76597233afc3f1065069a7c3e04670bc8ab647b7ec0d9d3e36eb5f90332efee2002d3be6053595b04922be55df18068ea50
SSDEEP

6144:l2JXknNBqSFhO3IZtfcex0KvI6y/JuGYLTI0bBt2gSl:oJXknNBq+hOstfcex0ELyc3pt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
377d8d167fc9bb5fc090c39d7d1ec860_JaffaCakes118

Files

377d8d167fc9bb5fc090c39d7d1ec860_JaffaCakes118
.exe windows:4 windows x86 arch:x86

62400661d5c4e2706ea4980d2a24209f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

DrawStatusTextW
CreateMappedBitmap
GetEffectiveClientRect
ImageList_SetOverlayImage
ImageList_GetDragImage
ImageList_AddIcon
ImageList_SetFlags
CreatePropertySheetPageW
ImageList_SetImageCount
ImageList_Destroy
ImageList_GetIcon
CreatePropertySheetPageA
ImageList_Copy
InitCommonControlsEx
CreateToolbar
DestroyPropertySheetPage
CreateStatusWindowW
CreateUpDownControl
ImageList_SetIconSize
ImageList_LoadImageA
ImageList_SetFilter
DrawStatusText

kernel32

GetACP
IsValidCodePage
LeaveCriticalSection
RtlUnwind
VirtualAlloc
EnumSystemLocalesA
GetModuleFileNameA
VirtualFree
GetLocaleInfoA
GetCPInfo
TlsFree
LoadLibraryA
GetStdHandle
GetProfileStringA
DeleteCriticalSection
GetProcAddress
GetDateFormatA
OpenSemaphoreA
CompareStringA
IsValidLocale
InterlockedExchange
GetCurrentProcessId
OpenEventA
QueryPerformanceCounter
EnumDateFormatsExW
LCMapStringW
GetFileType
GetLocaleInfoW
GetVersionExA
GetStartupInfoA
GetEnvironmentStrings
CompareStringW
CloseHandle
GetSystemTimeAsFileTime
SetFilePointer
WriteFile
VirtualQuery
InterlockedExchangeAdd
HeapFree
FlushFileBuffers
GetTimeFormatA
TlsAlloc
GetProcessHeaps
FreeEnvironmentStringsA
HeapReAlloc
GetEnvironmentStringsW
HeapAlloc
FreeEnvironmentStringsW
TerminateProcess
ContinueDebugEvent
EnterCriticalSection
IsBadWritePtr
SetStdHandle
GetStringTypeExA
LoadLibraryExW
TlsSetValue
GetLastError
GetStringTypeW
GetCurrentThread
VirtualProtect
MultiByteToWideChar
GetCurrentThreadId
lstrcmpiW
SetHandleCount
GetCurrentProcess
LCMapStringA
GetUserDefaultLCID
InitializeCriticalSection
GetCommandLineA
HeapCreate
LocalSize
GetModuleHandleA
GetOEMCP
WideCharToMultiByte
CreateMutexA
HeapSize
OpenMutexA
GetTimeZoneInformation
ReadFile
GetTickCount
GetModuleFileNameW
GetNamedPipeHandleStateW
GetStartupInfoW
GetSystemInfo
GetStringTypeA
GetProcessShutdownParameters
HeapDestroy
SetEnvironmentVariableA
TlsGetValue
SetLastError
ExitProcess
WriteProfileSectionW
ReadFileEx
UnhandledExceptionFilter
GetCommandLineW

user32

ChildWindowFromPoint
GetCapture
EnumDisplayDevicesA
ToAscii
GetUpdateRect
ShowWindow
SetProcessDefaultLayout
EnumWindowStationsW
SetClassWord
SetDebugErrorLevel
LoadKeyboardLayoutA
SetWindowsHookW
AttachThreadInput
ClipCursor
DefWindowProcW
CreateMenu
DrawTextExA
GetNextDlgTabItem
GetListBoxInfo
DdeQueryStringA
CharUpperA
SetScrollInfo
GetWindowTextA
MessageBoxExW
LoadMenuIndirectA
IsDlgButtonChecked
SetWindowLongA
CreateWindowExA
RemoveMenu
IntersectRect
DestroyWindow
DrawTextA
GetDlgItemTextW
OpenDesktopA
DdeGetLastError
DdeSetUserHandle
SendNotifyMessageW
DefMDIChildProcW
LoadMenuIndirectW
UnionRect
TabbedTextOutA
CharToOemW
DdeConnect
EnumPropsExA
SetShellWindow
SetLastErrorEx
GetCursorInfo
ReleaseCapture
GetWindowThreadProcessId
SetWindowRgn
DrawFocusRect
DdeQueryConvInfo
OpenDesktopW
GetPropA
DrawTextExW
CallNextHookEx
DragDetect
MessageBoxA
DdeDisconnectList
CreateMDIWindowW
GetDlgCtrlID
GetCaretPos
DlgDirListW
RegisterClassExA
RegisterClassA
EnableMenuItem
DdeUninitialize
SetMenu
ChangeMenuA
InsertMenuItemA
EnumDisplaySettingsW
EnumDesktopsA

Sections

.text
Size: 148KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62400661d5c4e2706ea4980d2a24209f

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 148KB - Virtual size: 144KB

.rdata Size: 100KB - Virtual size: 98KB

.data Size: 92KB - Virtual size: 108KB

.rsrc Size: 108KB - Virtual size: 105KB

.text
Size: 148KB - Virtual size: 144KB

.rdata
Size: 100KB - Virtual size: 98KB

.data
Size: 92KB - Virtual size: 108KB

.rsrc
Size: 108KB - Virtual size: 105KB