417069c17b938cd5041d6319f2da8c6e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

417069c17b938cd5041d6319f2da8c6e_JaffaCakes118
Size

153KB
MD5

417069c17b938cd5041d6319f2da8c6e
SHA1

8f38d98feb348f2851dbbb4a3fc5c815f0707561
SHA256

01935b1d3e713a04d3d598a7adcf20edb2d713a2c8794c373c39846273a65c44
SHA512

3eba32954f14dc7083281eea5c510c85ef20780aa9dc77355c5a4acbffbe7c8d93a5f0cf13a860ce73410f14d20b9360bdf75f23231afc2589793a29502fd479
SSDEEP

3072:WbX9YZm6+PtBC459kbL8Ijg2faUG4sEZDY7Op7erjCCL3bFKhDI2LBX5A2:EXr6+a45ebLO2fEF7OxUCQLFKp/7A2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
417069c17b938cd5041d6319f2da8c6e_JaffaCakes118

Files

417069c17b938cd5041d6319f2da8c6e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

984ccb11fa96fdaa90fcc05b5e593bb6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

shell32

SHGetSpecialFolderLocation
ShellExecuteW
SHGetPathFromIDListW

ole32

CoTaskMemFree
CoTaskMemRealloc
CoCreateInstance
CoUninitialize
CoTaskMemAlloc
CoInitialize

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

kernel32

GetVDMCurrentDirectories
GetConsoleCP
LockResource
GetSystemDirectoryW
InterlockedDecrement
GetCurrentProcessId
GetStartupInfoA
HeapCreate
SetUnhandledExceptionFilter
HeapSize
FreeLibrary
FreeEnvironmentStringsA
DeleteCriticalSection
SetFilePointer
ReadFile
LoadLibraryA
FlushFileBuffers
LocalAlloc
IsProcessorFeaturePresent
GetVersion
SetLastError
RtlUnwind
GetSystemTimeAsFileTime
GetLocaleInfoA
GetProcessHeap
GetACP
GetThreadLocale
FindResourceW
HeapDestroy
GetProcessHandleCount
GetVersionExW
lstrlenA
CreateFileW
InterlockedExchange
LoadLibraryW
lstrcmpA
GetFileType
Sleep
GetConsoleMode
DeleteFileW
GetCurrentProcess
WideCharToMultiByte
InitializeCriticalSection
LCMapStringA
LCMapStringW
GetModuleFileNameW
VirtualFree
GetCurrentThreadId
InterlockedCompareExchange
WaitForSingleObject
WriteConsoleW
GetStringTypeW
GetModuleHandleA
GetTickCount
CreateFileA
FlushInstructionCache
UnhandledExceptionFilter
GetCommandLineW
LoadResource
InterlockedIncrement
QueryPerformanceCounter
WriteConsoleA
GetEnvironmentStringsW
GetFileSize
EnumResourceNamesA
MulDiv
WritePrivateProfileSectionW
ExitProcess
GetConsoleOutputCP
GetDriveTypeW
HeapFree
GetStdHandle
lstrcmpiW
GetVersionExA
FreeEnvironmentStringsW
RaiseException
GetCPInfo
IsDebuggerPresent
GetModuleHandleW
GetModuleFileNameA
WriteFile
VirtualAlloc
HeapReAlloc
TlsGetValue
LeaveCriticalSection
GetProcAddress
CreateSemaphoreW
SetStdHandle
SizeofResource
CreateFileMappingW
TlsSetValue
HeapAlloc
GetCommandLineA
GetFileAttributesW
CopyFileW
CreateProcessW
GetLastError
GetOEMCP
GetStringTypeA
GetStartupInfoW
LoadLibraryExW
TlsAlloc
LocalFree
TlsFree
CloseHandle
SetHandleCount
GetEnvironmentStrings
lstrlenW

user32

RegisterClassExW
GetWindowTextLengthW
EndPaint
GetParent
DispatchMessageW
GetDC
BeginPaint
SetWindowTextW
GetClientRect
PeekMessageW
LoadCursorW
GetWindowRect
GetDlgItem
SetWindowPos
SetDlgItemTextW
GetWindow
SetCapture
GetWindowInfo
GetClassInfoExW
DestroyWindow
CreateWindowExW
TranslateMessage
MapWindowPoints
MessageBoxW
SystemParametersInfoW
GetDlgItemTextW
EndDialog

msvfw32

ICInfo

Sections

.text
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idive
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

984ccb11fa96fdaa90fcc05b5e593bb6

Headers

File Characteristics

Imports

version

shell32

ole32

gdi32

kernel32

user32

msvfw32

Sections

.text Size: 77KB - Virtual size: 77KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 69KB - Virtual size: 68KB

.idive Size: 1024B - Virtual size: 100KB

.text
Size: 77KB - Virtual size: 77KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 69KB - Virtual size: 68KB

.idive
Size: 1024B - Virtual size: 100KB