47568f628ea7254434bd12903981ddfe_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

47568f628ea7254434bd12903981ddfe_JaffaCakes118
Size

324KB
MD5

47568f628ea7254434bd12903981ddfe
SHA1

121bcd56442a1aabc18a03e3133fd24c48589dfd
SHA256

e27b72a39d62c75a5eec6fcd55ade2010ea41b9a8abcb38c50af2829452d257e
SHA512

e30342a0b14a6cd080613e6c61875080a52eaa7a2184d97ae2436e1cf4438e02688db147241ff8d8e9c1fa84ec1ef86d8ae0bedebac13a4de803339e44b75010
SSDEEP

6144:8fuuRExCi+QbxGJ3PZbIayYztFIsRLf3la565YVr/AvHAl77Mx:uuu+xCi+Qdy/NIaRtFIGL9a565i73s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47568f628ea7254434bd12903981ddfe_JaffaCakes118

Files

47568f628ea7254434bd12903981ddfe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d3a48f9dd16afe560481c4decc9ecb1a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileExW
CreateFileW
DebugBreak
EnumCalendarInfoW
SetEndOfFile
LocalLock
WriteProcessMemory
GetVolumeInformationW
VirtualFree
GetHandleInformation
TryEnterCriticalSection
EnumResourceLanguagesW
SetEvent
ConnectNamedPipe
GetDriveTypeW
EnumSystemCodePagesW
GlobalFlags
LoadResource
IsValidLocale
UnhandledExceptionFilter
GenerateConsoleCtrlEvent
MoveFileW
lstrcpyA
SetFileAttributesA
VirtualQueryEx
GetDateFormatA
PrepareTape
GlobalAddAtomW
GetACP
GetSystemTime
MoveFileExA
GetTempFileNameA
GetSystemTimeAdjustment
CreateIoCompletionPort
GlobalDeleteAtom
CompareStringA
GetWindowsDirectoryA
GetEnvironmentStringsW
SetMailslotInfo
GetAtomNameA
GetModuleFileNameW
SetConsoleOutputCP
GetVersionExA
GetCommandLineA
lstrlenA
VirtualProtect
GetPrivateProfileSectionW
ExitProcess

user32

CreateMDIWindowW
GetMenuItemInfoA
RegisterHotKey
IsIconic
AdjustWindowRectEx
GetTitleBarInfo
GetParent
SetActiveWindow
ValidateRgn
DeleteMenu
ChangeDisplaySettingsA
TranslateAcceleratorW
CreateIcon
LoadIconA
RegisterClipboardFormatA
EnumDisplaySettingsExW
EndMenu
FlashWindowEx
SetClassLongA
GetKeyboardLayout
CharUpperBuffA
GetKeyboardLayoutList
GetTabbedTextExtentA
FindWindowExW
GetScrollInfo
TrackMouseEvent
GrayStringA
ToUnicodeEx
DrawTextW
SendMessageTimeoutW
SwapMouseButton
SetPropA
OemToCharBuffW
RemoveMenu
GetClassInfoExW
SetKeyboardState
GetDesktopWindow
TranslateMessage
LoadCursorA
SetMenuItemInfoW
CreateCursor
GetKeyNameTextW
UnionRect
GetKeyboardLayoutNameA
GetClipboardViewer
VkKeyScanA
GetClassInfoW
IsWindowVisible
SetWindowsHookExA
SetMenuDefaultItem
EnumDisplayDevicesW
ScrollDC
CheckMenuItem
GetMenuDefaultItem
OpenWindowStationA
SwitchToThisWindow
GetCursorPos
SetMenu
IsCharUpperW
wsprintfA
SetRect

gdi32

CreateFontIndirectA
StretchBlt
PolyDraw
GetTextCharset
CreateRoundRectRgn
EnumFontFamiliesW
GdiComment
ExtEscape
GetWindowOrgEx
PathToRegion

advapi32

ImpersonateSelf
SetPrivateObjectSecurity
EqualSid
LookupAccountSidW
LookupAccountNameA
DeleteAce
RegQueryValueExA
StartServiceA
CryptSignHashW
RegDeleteValueW

shell32

DragQueryPoint
SHGetPathFromIDListA
SHGetSettings

oleaut32

SafeArrayGetLBound
VariantCopy
SysStringLen
SysFreeString
QueryPathOfRegTypeLi

comctl32

ImageList_LoadImageW
ImageList_Destroy
ImageList_DrawEx

shlwapi

StrCmpW
StrFormatByteSize64A
StrStrW
PathIsURLW
PathIsNetworkPathW
StrCpyNW
SHRegCloseUSKey
StrCmpNW
SHRegGetUSValueW

setupapi

SetupDiGetClassDevsExA

Sections

.text
Size: 288KB - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d3a48f9dd16afe560481c4decc9ecb1a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

oleaut32

comctl32

shlwapi

setupapi

Sections

.text Size: 288KB - Virtual size: 284KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 24KB - Virtual size: 20KB

.text
Size: 288KB - Virtual size: 284KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 24KB - Virtual size: 20KB