4290c836a9dd5612f0f73d5a4fbf3c36_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4290c836a9dd5612f0f73d5a4fbf3c36_JaffaCakes118
Size

408KB
MD5

4290c836a9dd5612f0f73d5a4fbf3c36
SHA1

26b6757477cf2a7741bd3cef81bfbc7b888b2f18
SHA256

13abc8b5ed9b41c820056ef2c3ba2a12411e2dde8d4843b4837ff54080944596
SHA512

785138dfbef662cb371ecbbb3ffc00011b0d8c2885bfaafa3c80733b0eda37faa8eac6372c0d11eecbf6b9c0eb61451c87e318a330de8d46231b096b8fb6b89f
SSDEEP

6144:CCKIHjSiduxZ8YLOH51fiGGYeb9tL7lnDD/z9WJloqE0mv:CCzlcxZLOjiOwFD55qE0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4290c836a9dd5612f0f73d5a4fbf3c36_JaffaCakes118

Files

4290c836a9dd5612f0f73d5a4fbf3c36_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f2602317163fd7063ab89c0056819fee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
CompareStringW
SetVolumeLabelW
CreateMutexA
InterlockedExchange
GetOEMCP
GetEnvironmentStrings
WriteFile
SetHandleCount
WriteConsoleOutputCharacterA
TlsGetValue
GetVersion
SetStdHandle
TlsSetValue
RaiseException
LeaveCriticalSection
QueryPerformanceCounter
GetProcessHeap
FlushInstructionCache
SetEnvironmentVariableA
GetLastError
LCMapStringA
GetThreadContext
TerminateProcess
GetTimeZoneInformation
VirtualQuery
GetStringTypeA
GetProcessShutdownParameters
GetModuleHandleA
GetUserDefaultLangID
GetStringTypeW
WritePrivateProfileSectionW
CloseHandle
FlushFileBuffers
HeapFree
FileTimeToDosDateTime
OpenMutexA
GetProfileIntA
HeapCreate
CompareStringA
LCMapStringW
WideCharToMultiByte
GetCurrentThread
EnterCriticalSection
ContinueDebugEvent
SetFilePointer
ReadFile
GetSystemTime
GetCPInfo
SuspendThread
GlobalSize
GetProcAddress
HeapDestroy
GetSystemTimeAsFileTime
GetFileType
ReadConsoleOutputCharacterW
GetCurrentThreadId
UnhandledExceptionFilter
GetStartupInfoA
GetEnvironmentStringsW
HeapAlloc
InterlockedIncrement
MultiByteToWideChar
GetLocalTime
InterlockedDecrement
LoadLibraryA
HeapReAlloc
VirtualAlloc
LocalReAlloc
DeleteCriticalSection
FreeEnvironmentStringsW
GetCurrentProcessId
SetLastError
LoadLibraryW
FreeEnvironmentStringsA
GetStdHandle
FindNextFileA
EnumResourceTypesW
GetCurrentProcess
RtlUnwind
GetACP
GetTickCount
GetModuleFileNameA
IsBadWritePtr
TlsAlloc
ExitProcess
VirtualFree
InitializeCriticalSection
TlsFree

comctl32

ImageList_GetFlags
InitMUILanguage
ImageList_Read
ImageList_Remove
ImageList_Duplicate
InitCommonControlsEx

shell32

SHGetSpecialFolderLocation
DoEnvironmentSubstA

comdlg32

ReplaceTextA
ReplaceTextW
GetFileTitleA

user32

EnumDisplayDevicesA
GetCursorInfo
ChangeDisplaySettingsExA
SetUserObjectSecurity
FrameRect
wvsprintfW
ToUnicode
GetClientRect
GetKeyboardLayout
SubtractRect
MenuItemFromPoint
LookupIconIdFromDirectoryEx
CheckDlgButton
LoadCursorA
DrawFrameControl
RegisterClassExA
DlgDirSelectComboBoxExW
GetWindowModuleFileNameA
SetDlgItemTextW
GetThreadDesktop
GetNextDlgTabItem
DdeConnectList
SetFocus
GetClipboardData
CopyAcceleratorTableA
GetScrollRange
RegisterClassA
GetClipboardSequenceNumber
OpenDesktopW
LoadMenuIndirectA
GetMessageA
DdePostAdvise
DrawStateW
DlgDirSelectExA
SetWindowWord
LoadImageW
SendNotifyMessageW
GetMenuItemID
CheckMenuRadioItem
DrawTextW
DdeCmpStringHandles
GetMenuCheckMarkDimensions
CharLowerBuffA

Sections

.text
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 156KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f2602317163fd7063ab89c0056819fee

Headers

File Characteristics

Imports

kernel32

comctl32

shell32

comdlg32

user32

Sections

.text Size: 64KB - Virtual size: 60KB

.rdata Size: 96KB - Virtual size: 93KB

.data Size: 88KB - Virtual size: 98KB

.rsrc Size: 156KB - Virtual size: 154KB

.text
Size: 64KB - Virtual size: 60KB

.rdata
Size: 96KB - Virtual size: 93KB

.data
Size: 88KB - Virtual size: 98KB

.rsrc
Size: 156KB - Virtual size: 154KB