432a116603a7e4cded1866fd6c6fd573_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

432a116603a7e4cded1866fd6c6fd573_JaffaCakes118
Size

676KB
MD5

432a116603a7e4cded1866fd6c6fd573
SHA1

2b05c126d68e2971c3b33e9302e48b9256888ded
SHA256

b7434a521d5b6933795cae1a8cccb6ab3ede71dfdba204ab927c99f5bd96544b
SHA512

d2cc95f7bd038e507023c694fa529227c10d30bc032fdb1c645e050e65d3a3ff49418ffda5e9a62b5977915ce42c4fea137061d301d934b048e73867f2d7cd59
SSDEEP

12288:WK6ARrvogUUcyW0FKzHBzirYy/rooi6z/WBKMtW1OK1UJ:WtA1wB4WLTwrNzxitKMw1714

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
432a116603a7e4cded1866fd6c6fd573_JaffaCakes118

Files

432a116603a7e4cded1866fd6c6fd573_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5668ec95bc3b7accfe167eda0b2c301b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsGetValue
WriteFile
GetStdHandle
LCMapStringA
WideCharToMultiByte
OpenMutexA
RtlUnwind
MultiByteToWideChar
GetLocalTime
GetProcAddress
HeapReAlloc
QueryPerformanceCounter
TlsAlloc
InitializeCriticalSection
GetSystemTimeAsFileTime
FreeEnvironmentStringsA
LoadLibraryA
ContinueDebugEvent
VirtualAlloc
GetCurrentProcess
GetCommandLineA
GetLastError
SetLastError
HeapDestroy
SetStdHandle
HeapAlloc
GetACP
LeaveCriticalSection
FlushFileBuffers
SetCurrentDirectoryW
SleepEx
GetFileType
GetCurrentThreadId
GetStartupInfoA
GetVersion
VirtualQuery
GetCompressedFileSizeW
GetThreadTimes
GetModuleFileNameA
DeleteCriticalSection
SetTimeZoneInformation
EnumDateFormatsExA
CloseHandle
SetHandleCount
VirtualFree
EnterCriticalSection
InterlockedIncrement
CreateMutexA
TlsFree
GetTickCount
GetComputerNameW
TlsSetValue
SetEnvironmentVariableA
SetConsoleCursorPosition
GetStringTypeA
ReadFile
LocalFlags
GetSystemTime
GetTimeZoneInformation
InterlockedDecrement
TerminateProcess
GetOEMCP
GetCPInfo
GetCurrentProcessId
IsBadWritePtr
UnhandledExceptionFilter
GetEnvironmentStrings
FreeEnvironmentStringsW
GetCommandLineW
CompareStringW
lstrlenW
HeapCreate
SetEnvironmentVariableW
LCMapStringW
GetModuleHandleA
GetCurrentThread
GetStringTypeW
GetEnvironmentStringsW
InterlockedExchange
ExitProcess
GetCurrencyFormatA
LocalSize
SetFilePointer
HeapFree
CompareStringA

comctl32

ImageList_Copy
DestroyPropertySheetPage
ImageList_AddMasked
ImageList_GetFlags
ImageList_DragEnter
CreatePropertySheetPageW
ImageList_GetIconSize
ImageList_LoadImageA
ImageList_GetIcon
ImageList_Remove
ImageList_Draw
ImageList_SetFilter
DrawStatusTextW
ImageList_SetBkColor
ImageList_GetImageCount
ImageList_BeginDrag
ImageList_LoadImageW
ImageList_Merge
InitCommonControlsEx
CreateStatusWindow
ImageList_GetImageRect
CreateStatusWindowW
ImageList_Duplicate

user32

RegisterClassA
TranslateAccelerator
SetSysColors
LoadCursorA
DdeQueryStringA
GetScrollInfo
SetMenuItemInfoA
ClientToScreen
MapVirtualKeyExA
TrackPopupMenuEx
LoadStringA
GetScrollRange
DefMDIChildProcW
ScrollDC
GetPriorityClipboardFormat
GetWindowTextA
AnyPopup
LoadAcceleratorsA
UpdateWindow
GetNextDlgGroupItem
DrawFrame
GetAltTabInfo
SetWindowPos
IsCharAlphaNumericW
DefFrameProcW
RegisterWindowMessageW
SetWindowsHookExW
CharPrevExA
UnionRect
SendMessageTimeoutA
ScreenToClient
CreateAcceleratorTableW
GetProcessWindowStation
FindWindowExA
MessageBoxIndirectW
RegisterClassExA
GetWindowPlacement
IsCharUpperA
DialogBoxIndirectParamA
GetClipboardViewer
InSendMessageEx
GetScrollBarInfo
CreateWindowExW
ToAsciiEx
ShowWindow
DestroyWindow
DefWindowProcA
SubtractRect
DestroyCursor
PeekMessageA
TranslateAcceleratorA
VkKeyScanExW
GetTabbedTextExtentW
MessageBoxA
SwapMouseButton
GetOpenClipboardWindow
FindWindowW
GetSysColorBrush
TrackMouseEvent
DrawFocusRect
SetWindowLongW
HideCaret
CallWindowProcW
GetTabbedTextExtentA
InsertMenuItemA
RegisterDeviceNotificationW
CloseWindowStation
EnumDisplaySettingsExA
MsgWaitForMultipleObjects
AppendMenuW

gdi32

GetTextAlign
GetCharWidthFloatW
AddFontResourceA
GetDIBColorTable
LineTo
GetRandomRgn
EnumFontsW
GetTextCharset
UpdateColors
EnumFontFamiliesW

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 456KB - Virtual size: 453KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5668ec95bc3b7accfe167eda0b2c301b

Headers

File Characteristics

Imports

kernel32

comctl32

user32

gdi32

Sections

.text Size: 68KB - Virtual size: 67KB

.rdata Size: 456KB - Virtual size: 453KB

.data Size: 128KB - Virtual size: 149KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 68KB - Virtual size: 67KB

.rdata
Size: 456KB - Virtual size: 453KB

.data
Size: 128KB - Virtual size: 149KB

.rsrc
Size: 20KB - Virtual size: 19KB