383373ac0eefa1cb5ab11e5e1271e6b0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

383373ac0eefa1cb5ab11e5e1271e6b0_JaffaCakes118
Size

616KB
MD5

383373ac0eefa1cb5ab11e5e1271e6b0
SHA1

e6043c04928a8509cdabb697432011e704ac6786
SHA256

56d92378c3b10a00da8a78bf1a4e912116a9e7c28f7f316be99640691ef162ff
SHA512

e842e3dff120815c9f418fb556bd96e8ef376104d074cf5542e4a91a1a5901b23d72f3247619f327aba136dd9565151e64b9b135e6fbe56af1ace6ca23c79636
SSDEEP

12288:2jf1Qw7yYyqcZyM4oF3zV7dXOwP3x5MlExWW1qQHoC:6WtYDcAWzddXOwP3x5MlE8to5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
383373ac0eefa1cb5ab11e5e1271e6b0_JaffaCakes118

Files

383373ac0eefa1cb5ab11e5e1271e6b0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

57e90e3d309a440511d8e3e01ccbf461

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
GetFileType
HeapCreate
WideCharToMultiByte
VirtualProtect
TerminateProcess
GetModuleFileNameW
GetDiskFreeSpaceExW
GetCommandLineW
FlushFileBuffers
CompareStringA
HeapSize
VirtualFree
LCMapStringA
SetHandleCount
SetStdHandle
GetProcAddress
LoadLibraryA
GetTickCount
VirtualQuery
LocalFree
FreeEnvironmentStringsW
GetTimeFormatA
HeapAlloc
GetCurrentProcessId
CloseHandle
GetACP
OpenMutexA
EnumSystemLocalesA
RtlMoveMemory
SetFilePointer
GetCPInfo
TlsGetValue
LCMapStringW
InterlockedDecrement
WriteFile
GetCurrentThread
WaitNamedPipeA
CompareStringW
GetEnvironmentStringsW
ReadFile
GetCommandLineA
EnterCriticalSection
GetStdHandle
MultiByteToWideChar
GetStartupInfoA
GetShortPathNameA
TlsAlloc
GetLocaleInfoW
GetModuleHandleA
GetStartupInfoW
ExpandEnvironmentStringsW
TlsSetValue
GetEnvironmentStrings
HeapReAlloc
RtlUnwind
GetStringTypeA
GetUserDefaultLCID
GetOEMCP
LeaveCriticalSection
HeapDestroy
FreeEnvironmentStringsA
InitializeCriticalSection
GetDateFormatA
IsBadWritePtr
GetStringTypeW
VirtualAlloc
CreateMutexA
SetEnvironmentVariableA
GetLastError
GetVersionExA
GetModuleFileNameA
GetLocaleInfoA
GetTimeZoneInformation
DeleteCriticalSection
ExitProcess
HeapFree
GetCurrentThreadId
GetSystemInfo
WriteConsoleOutputCharacterW
GetCurrentProcess
GetCompressedFileSizeA
TlsFree
InterlockedExchange
CreateFileMappingA
QueryPerformanceCounter
IsValidLocale
SetLastError
GetSystemTimeAsFileTime
IsValidCodePage

shell32

SHGetDataFromIDListA
SHGetPathFromIDListW
DragFinish

user32

EnumPropsA
SetWindowTextA
CreateIconIndirect
CreateMDIWindowA
OpenDesktopW
GetKBCodePage
GetWindowLongW
EnumDisplaySettingsA
GetMessageA
IsCharUpperA
TrackPopupMenuEx
DdeFreeDataHandle
DestroyWindow
wvsprintfA
UnregisterDeviceNotification
RegisterClassExA
CharToOemA
RegisterClassA
DragDetect
ShowOwnedPopups
DlgDirSelectExW
SetDeskWallpaper
LoadAcceleratorsA
RegisterClipboardFormatA
CreateDialogIndirectParamW
GetMessageExtraInfo
MapVirtualKeyExW
SendInput
SubtractRect
GetScrollBarInfo
OpenWindowStationW
EnumDesktopWindows
wsprintfA
DefWindowProcW
RegisterDeviceNotificationA
GetClipboardFormatNameW
ActivateKeyboardLayout
CreateWindowExW
SetMessageQueue
DefDlgProcA
SetClassLongA
GetCursorPos
SetCaretBlinkTime
SetClipboardViewer
GetClipboardSequenceNumber
EnumWindows
GetPropA
SetWindowsHookExA
SendIMEMessageExW
IsDialogMessage
DefWindowProcA
GetWindowContextHelpId
CopyIcon
DdeQueryStringW
OpenDesktopA
GetWindowInfo
LoadImageA
PostThreadMessageA
GetCapture
UnhookWinEvent
CharNextW
CallWindowProcW
GetClipboardViewer
MessageBoxA
IsWindowUnicode
DrawEdge
GetClassInfoExW
ShowWindow
VkKeyScanExW

comctl32

GetEffectiveClientRect
ImageList_Add
ImageList_Merge
ImageList_Copy
CreateStatusWindowW
CreateMappedBitmap
DrawInsert
ImageList_SetDragCursorImage
InitCommonControlsEx
ImageList_SetFilter
ImageList_GetDragImage

Sections

.text
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 152KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

57e90e3d309a440511d8e3e01ccbf461

Headers

File Characteristics

Imports

kernel32

shell32

user32

comctl32

Sections

.text Size: 96KB - Virtual size: 94KB

.rdata Size: 256KB - Virtual size: 252KB

.data Size: 108KB - Virtual size: 115KB

.rsrc Size: 152KB - Virtual size: 148KB

.text
Size: 96KB - Virtual size: 94KB

.rdata
Size: 256KB - Virtual size: 252KB

.data
Size: 108KB - Virtual size: 115KB

.rsrc
Size: 152KB - Virtual size: 148KB