40e3e257d1052c2b122faeeb593e33ce_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

40e3e257d1052c2b122faeeb593e33ce_JaffaCakes118
Size

300KB
MD5

40e3e257d1052c2b122faeeb593e33ce
SHA1

047d89cbe3e4126674fc185ecbfb5a857343f462
SHA256

517539c77068c18098f0125c4664044e3de1fb5af508d3f80b07fc9a23ffeedf
SHA512

8fc15ce84a525a2cf667c48dccd0cf51fc44e7c3f23a7912b623c7718894053a48450d79e7b75004ba8c879a99e6d3c49ffb810fbac1263091894a2ae49e066e
SSDEEP

6144:JmbYIndsKoU1iup+0rvdkPaD4rI12fd/Y6Nbc:JmkInSKoU1tp+0btcrI1UYgb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40e3e257d1052c2b122faeeb593e33ce_JaffaCakes118

Files

40e3e257d1052c2b122faeeb593e33ce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8fd0441383edfe3dd050d01dd209e87d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DragLeave
ImageList_GetImageRect
ImageList_GetIconSize
ImageList_SetIconSize
CreateStatusWindow
DrawStatusTextA
CreateStatusWindowA
ImageList_Write
ImageList_AddIcon
ImageList_DrawEx
ImageList_ReplaceIcon
CreatePropertySheetPageW
ImageList_LoadImage
ImageList_Replace
_TrackMouseEvent
CreateMappedBitmap
GetEffectiveClientRect
ImageList_BeginDrag
ImageList_LoadImageA
InitCommonControlsEx

user32

ScrollWindowEx
CreateWindowExA
ShowWindow
RegisterClassExA
AppendMenuW
GetMonitorInfoW
DialogBoxIndirectParamA
OemToCharBuffW
OpenInputDesktop
RedrawWindow
GetUpdateRgn
IsDialogMessageA
OpenDesktopA
GetUserObjectInformationW
LoadKeyboardLayoutA
DrawTextExW
OpenIcon
SetDlgItemTextW
SetLastErrorEx
LookupIconIdFromDirectoryEx
MessageBoxW
GetTabbedTextExtentW
ReleaseCapture
FreeDDElParam
PeekMessageW
DestroyWindow
PtInRect
CopyAcceleratorTableW
RegisterClassA
DefWindowProcA
SetWindowsHookExW
TrackMouseEvent
LoadBitmapA
DdeUninitialize
CloseWindowStation
SetWindowsHookW
GetMonitorInfoA
UnhookWinEvent
CreateCaret

gdi32

DeleteDC
GetObjectW
CreateDIBSection
GetDeviceCaps
CreateHalftonePalette
CreateDCW

kernel32

UnhandledExceptionFilter
GetConsoleCP
LeaveCriticalSection
GetCPInfo
GetConsoleOutputCP
Sleep
GetTimeZoneInformation
GetComputerNameA
EnumSystemCodePagesA
GetCurrentProcessId
GetUserDefaultLCID
GetTickCount
lstrcpyA
GetPrivateProfileSectionA
LCMapStringA
SetComputerNameW
GetDateFormatA
LoadLibraryA
GetCommandLineW
GetLogicalDriveStringsA
TlsFree
QueryPerformanceCounter
OpenEventA
InterlockedDecrement
InterlockedExchange
GetTimeFormatA
GetEnvironmentStringsW
GetThreadTimes
OpenWaitableTimerA
LCMapStringW
GetCommandLineA
HeapSize
SetConsoleCtrlHandler
FreeEnvironmentStringsA
SetUnhandledExceptionFilter
CompareStringW
ExitProcess
WriteConsoleA
lstrcmpi
GetCompressedFileSizeW
GetProcessHeaps
EnterCriticalSection
GetStartupInfoA
GetLocaleInfoW
HeapAlloc
RemoveDirectoryA
GetProcAddress
GetModuleFileNameW
GetModuleFileNameA
SetLastError
GetLocaleInfoA
SetEnvironmentVariableA
HeapDestroy
WriteConsoleW
SetSystemTime
InitializeCriticalSection
SetLocaleInfoA
GetEnvironmentVariableW
CreateFileA
GetEnvironmentStrings
AllocConsole
IsDebuggerPresent
WriteFile
TlsGetValue
CreateMutexA
GetConsoleMode
TlsSetValue
GetSystemTimeAsFileTime
CreateFileMappingW
ReadFile
CloseHandle
GetStartupInfoW
FlushFileBuffers
FreeEnvironmentStringsW
GetCurrentThread
CompareStringA
VirtualFree
FreeResource
MultiByteToWideChar
HeapFree
WideCharToMultiByte
GetVersionExA
GetFileType
GetLastError
FreeLibrary
RtlFillMemory
VirtualQuery
SetThreadIdealProcessor
GetCurrentThreadId
OpenMutexA
GetModuleHandleA
SetConsoleMode
TlsAlloc
SetHandleCount
GetStdHandle
IsValidLocale
SetFilePointer
InterlockedIncrement
VirtualAlloc
GetFileAttributesExA
TerminateProcess
ReleaseMutex
RtlUnwind
GetProcAddress
GetCurrentProcess
GetOEMCP
lstrcmp
GetStringTypeW
HeapCreate
IsValidCodePage
SetStdHandle
DeleteCriticalSection
lstrcpynW
GetStringTypeA
HeapReAlloc
GetACP
EnumSystemLocalesA
GetProcessHeap

comdlg32

ReplaceTextA
PrintDlgW
ReplaceTextW
PrintDlgA

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8fd0441383edfe3dd050d01dd209e87d

Headers

File Characteristics

Imports

comctl32

user32

gdi32

kernel32

comdlg32

Sections

.text Size: 88KB - Virtual size: 85KB

.rdata Size: 76KB - Virtual size: 75KB

.data Size: 92KB - Virtual size: 111KB

.rsrc Size: 40KB - Virtual size: 37KB

.text
Size: 88KB - Virtual size: 85KB

.rdata
Size: 76KB - Virtual size: 75KB

.data
Size: 92KB - Virtual size: 111KB

.rsrc
Size: 40KB - Virtual size: 37KB