4038166b8db6f6f604d22cf78ff46ecd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4038166b8db6f6f604d22cf78ff46ecd_JaffaCakes118
Size

588KB
MD5

4038166b8db6f6f604d22cf78ff46ecd
SHA1

3a28f9447b4a5969ab38c51b7aa664334c708fb0
SHA256

28f11c886483c0c867fa063849d54fb40d1359aab5259983525851998d65499f
SHA512

bc7fdfd30cea400df1898a81c23a7327dd012dbe3b78302691321dadd9f0f0d14a4c96bcf6b4bf4e9bfb0f7cbe525cf662bd429375bdf863574629a1ffa63812
SSDEEP

12288:pK2iduz9nC7XjHMznEWqYOK+pWKSU6z4EMWILd2tKnJRkk/XNQsqZQ75av:pKcAXjsznOzKd4EMWILxnjP/XNqZL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4038166b8db6f6f604d22cf78ff46ecd_JaffaCakes118

Files

4038166b8db6f6f604d22cf78ff46ecd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a62acf78e387b54676252b5b1a86318f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Imports

comdlg32

GetFileTitleA
ChooseColorA
GetOpenFileNameA
ChooseColorW

user32

SetCaretPos
SetDlgItemInt
ChangeMenuA
OpenDesktopW
ActivateKeyboardLayout
CloseWindow
AppendMenuW
ShowWindow
DdeCreateStringHandleA
IsWindowVisible
DefWindowProcW
LoadAcceleratorsA
LoadKeyboardLayoutA
FlashWindow
GetWindowTextA
CreateWindowExW
MessageBoxIndirectA
ChangeClipboardChain
GetClassInfoW
CloseDesktop
GetParent
ShowOwnedPopups
MapVirtualKeyW
MsgWaitForMultipleObjectsEx
GetTitleBarInfo
MessageBoxW
SetSystemCursor
GetWindowLongW
DestroyWindow
CreateDesktopW
EnumDisplaySettingsExA
CreateMDIWindowA
DlgDirListW
GetComboBoxInfo
AdjustWindowRect
CharNextExA
SetMenuContextHelpId
GetWindowTextW
DdeUninitialize
UnregisterDeviceNotification
PostQuitMessage
DeferWindowPos
GetKeyboardState
RegisterClassExA
DrawStateW
RegisterClassA
DefDlgProcW
EnumClipboardFormats
SetActiveWindow
BroadcastSystemMessage
GetClipboardData
IsCharAlphaA
IsCharUpperA
IsWindow
GetLastActivePopup
EnumDisplayDevicesW
TranslateAcceleratorW
MessageBoxA
DialogBoxParamA
DdeNameService
SetWindowWord
LookupIconIdFromDirectoryEx
InSendMessageEx
ReleaseCapture
ExitWindowsEx
DdeCmpStringHandles
BringWindowToTop
GetMenuContextHelpId
DestroyCursor
CharPrevExA

comctl32

ImageList_LoadImageW
ImageList_GetImageRect
ImageList_AddMasked
ImageList_LoadImage
CreateStatusWindowW
ImageList_Create
ImageList_Remove
ImageList_Destroy
ImageList_Write
CreatePropertySheetPageW
ImageList_GetImageCount
ImageList_SetIconSize
ImageList_DrawEx
CreateToolbarEx
ImageList_DragLeave
InitCommonControlsEx
InitMUILanguage
ImageList_DragEnter
ImageList_Duplicate
ImageList_Read
ImageList_DrawIndirect
CreateUpDownControl
ImageList_SetDragCursorImage
DrawStatusText

kernel32

LCMapStringW
CompareStringW
GetCurrentThreadId
UnhandledExceptionFilter
Sleep
GetModuleFileNameA
GetCommandLineA
MultiByteToWideChar
WriteFile
LeaveCriticalSection
GetVersion
GetEnvironmentStringsW
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetProcAddress
GetStringTypeA
CloseHandle
GetSystemTime
FreeEnvironmentStringsA
InitializeCriticalSection
FreeEnvironmentStringsW
FlushFileBuffers
WideCharToMultiByte
SetEnvironmentVariableA
CreateToolhelp32Snapshot
InterlockedExchange
GetProfileStringW
OpenMutexA
InterlockedIncrement
TlsGetValue
GetLastError
ReadConsoleA
CreateMutexA
GetLocalTime
GetCommandLineW
GetCPInfo
TlsSetValue
LocalHandle
GetStartupInfoA
CreateMailslotA
GetModuleHandleA
LCMapStringA
GetFileType
HeapDestroy
GetCurrentProcessId
InterlockedDecrement
SetLastError
TlsFree
CompareStringA
SetFilePointer
LoadLibraryA
ReadFile
ExitProcess
EnterCriticalSection
GetStdHandle
LocalFlags
EnumResourceLanguagesW
RtlUnwind
GetCurrentProcess
GetCurrentThread
SetHandleCount
GetStartupInfoW
GetEnvironmentStrings
VirtualQuery
TerminateProcess
VirtualAlloc
TlsAlloc
HeapFree
DeleteCriticalSection
HeapAlloc
GetTickCount
HeapCreate
HeapReAlloc
GetModuleFileNameW
GetVersionExW
GetStringTypeW
VirtualFree
ExpandEnvironmentStringsA
GetTimeZoneInformation
IsBadWritePtr
SetStdHandle

Sections

.text
Size: 192KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 255KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a62acf78e387b54676252b5b1a86318f

Headers

File Characteristics

PDB Paths

Imports

comdlg32

user32

comctl32

kernel32

Sections

.text Size: 192KB - Virtual size: 190KB

.rdata Size: 256KB - Virtual size: 255KB

.data Size: 112KB - Virtual size: 130KB

.rsrc Size: 24KB - Virtual size: 20KB

.text
Size: 192KB - Virtual size: 190KB

.rdata
Size: 256KB - Virtual size: 255KB

.data
Size: 112KB - Virtual size: 130KB

.rsrc
Size: 24KB - Virtual size: 20KB