3932ca1e9b05cd968182d32e0be63382_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3932ca1e9b05cd968182d32e0be63382_JaffaCakes118
Size

568KB
MD5

3932ca1e9b05cd968182d32e0be63382
SHA1

c57527e723a41f3e2da97c755260645ddff6d144
SHA256

ccbbd762adf5797511e9aba8d8970adaff9a0be8cede7bcaaac4859098dddaec
SHA512

22361f18ee1fb466e7f5a0b489b2e91a27305e526c16fb7b8c160cf73d4873380f0a3f5631645ce7d4307b80904f0eeb1135b7485518d59e6c7d38cc50751a25
SSDEEP

12288:zNaHoHUdhHa7oD3+xqVFfQexnl1OD2nl+xrx74wKuzUz:5aHva7O3+xuFfQQl1hEEkc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3932ca1e9b05cd968182d32e0be63382_JaffaCakes118

Files

3932ca1e9b05cd968182d32e0be63382_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0a7584e116f5b9d907e7ca13fbddf193

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Imports

comctl32

InitCommonControlsEx
ImageList_DragLeave
CreateStatusWindowA
MakeDragList
ImageList_GetImageInfo
ImageList_Write
CreateToolbarEx
ImageList_SetImageCount
ImageList_GetDragImage
ImageList_SetOverlayImage
ImageList_Duplicate
CreateMappedBitmap
ImageList_Replace
ImageList_DragEnter
CreatePropertySheetPageA
DrawStatusText

kernel32

Sleep
HeapCreate
IsValidLocale
GetProcessHeap
GetCommandLineA
LCMapStringW
CreateFileA
FreeLibrary
HeapAlloc
TlsGetValue
GetPrivateProfileIntW
TlsFree
GetStdHandle
SetConsoleCtrlHandler
LocalSize
HeapFree
GetCurrentThread
InitializeCriticalSection
GetConsoleMode
InterlockedDecrement
ReadFile
GetTickCount
GetDateFormatA
CloseHandle
SetLastError
SetHandleCount
SetFilePointer
SetUnhandledExceptionFilter
GetProcAddress
WriteFile
TlsSetValue
InterlockedExchange
WideCharToMultiByte
GetCurrentProcessId
GetACP
HeapSize
UnhandledExceptionFilter
SetStdHandle
GetCPInfo
GetEnvironmentStringsW
ExitProcess
LocalUnlock
HeapReAlloc
GetStartupInfoW
GetOEMCP
HeapDestroy
GetConsoleOutputCP
GetCurrentThreadId
GetTimeZoneInformation
GetModuleFileNameA
SetEnvironmentVariableA
WriteConsoleW
VirtualAlloc
TerminateProcess
InterlockedIncrement
GetModuleFileNameW
MultiByteToWideChar
VirtualFree
VirtualQuery
CompareStringW
GetEnvironmentStrings
SetThreadContext
QueryPerformanceCounter
GetCurrentProcess
GetLocaleInfoW
GetModuleHandleA
TlsAlloc
GetVersionExA
GetLastError
IsDebuggerPresent
GetCommandLineW
CreateMutexA
IsValidCodePage
GetFileType
GetTimeFormatA
GetSystemTimeAsFileTime
GetStartupInfoA
WriteConsoleA
EnumSystemLocalesA
GetStringTypeW
GetUserDefaultLCID
CompareStringA
OpenMutexA
FreeEnvironmentStringsA
GetConsoleCP
LoadLibraryA
RtlUnwind
GetStringTypeA
LCMapStringA
GetLocaleInfoA
LeaveCriticalSection
FlushFileBuffers
FreeEnvironmentStringsW
EnterCriticalSection
DeleteCriticalSection

user32

ShowCursor
SetWindowContextHelpId
RemoveMenu
DlgDirSelectComboBoxExW
MapVirtualKeyExA
RegisterDeviceNotificationW
EnumWindows
EnumWindowStationsW
CascadeChildWindows
GetKeyNameTextA
GetClientRect
RegisterClassExA
DrawStateW
OemKeyScan
IsWindowEnabled
DestroyWindow
GetScrollInfo
MapWindowPoints
GetKeyboardLayoutList
GetMenuInfo
SendIMEMessageExA
DrawAnimatedRects
SetParent
SetScrollRange
CreateDialogParamW
GetClipboardFormatNameW
LoadStringW
RegisterClipboardFormatA
ShowWindow
DdeFreeStringHandle
GetDlgItemInt
LoadAcceleratorsW
SetUserObjectInformationA
ScrollDC
TileWindows
GetClassLongW
SetCursor
GetShellWindow
GetListBoxInfo
SetForegroundWindow
SetClipboardData
LookupIconIdFromDirectoryEx
RegisterClassA
DefWindowProcW
DdeQueryStringA
MessageBoxExW
SubtractRect
GetNextDlgTabItem
GetTopWindow
GetDlgItemTextA
CreateWindowExW
SetTimer
CheckRadioButton
IsRectEmpty
DdeConnectList
AnimateWindow
LoadKeyboardLayoutA
MessageBoxW
GetClassNameA
CreateMenu
GetWindowPlacement
DefFrameProcA

Sections

.text
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a7584e116f5b9d907e7ca13fbddf193

Headers

File Characteristics

PDB Paths

Imports

comctl32

kernel32

user32

Sections

.text Size: 112KB - Virtual size: 108KB

.rdata Size: 260KB - Virtual size: 256KB

.data Size: 108KB - Virtual size: 115KB

.rsrc Size: 84KB - Virtual size: 83KB

.text
Size: 112KB - Virtual size: 108KB

.rdata
Size: 260KB - Virtual size: 256KB

.data
Size: 108KB - Virtual size: 115KB

.rsrc
Size: 84KB - Virtual size: 83KB