4a9c4f0df85388043d88d0a36c3b23d7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4a9c4f0df85388043d88d0a36c3b23d7_JaffaCakes118
Size

193KB
MD5

4a9c4f0df85388043d88d0a36c3b23d7
SHA1

2f20f1fe5c1e4db443d3e9ef8b375d11813408c4
SHA256

d8d69e6f1b0570f4c19b3fcc0372826a10a879e4bb8b9fc0f5cb674131c33cfd
SHA512

6841eb171a424b057b06d2f5753fb29cc15874a6d6cb45b1785277f4d2bfef0cdb1a3f07de6497122414d2fbd6bc49605e8bdf6890c857a06ea5248ac31767db
SSDEEP

6144:FiMzS1W2X7bUt+LbQwVp/lsAukW4CQdT6uy:8MzQXHSMjLnTW4CQouy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a9c4f0df85388043d88d0a36c3b23d7_JaffaCakes118

Files

4a9c4f0df85388043d88d0a36c3b23d7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

085ee6bb04d70cc7c43e7475f9fa5d04

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoUninitialize
CoCreateInstance
CoInitialize

gdi32

SetBkColor
CreateBitmap
PtVisible
DeleteObject
SetWindowExtEx
Escape
ScaleViewportExtEx
SetViewportOrgEx
SetMapMode
RectVisible
SaveDC
OffsetViewportOrgEx
GetDeviceCaps
DeleteDC
ScaleWindowExtEx
RestoreDC
SetTextColor
SetViewportExtEx
ExtTextOutW
TextOutW
GetClipBox
SelectObject
GetStockObject

shlwapi

PathFileExistsW
PathAppendW
PathFindFileNameW
PathFindExtensionW

kernel32

GetStartupInfoA
GetCPInfo
GetShortPathNameW
GetModuleFileNameA
LCMapStringA
GetEnvironmentStrings
GetSystemInfo
GetStringTypeA
RtlUnwind
VirtualAlloc
GetCurrentProcessId
GetProcessAffinityMask
FreeEnvironmentStringsW
GetStdHandle
IsBadReadPtr
TerminateProcess
VirtualQuery
SetFilePointer
HeapAlloc
VirtualProtect
QueryPerformanceCounter
EnumResourceTypesW
IsBadCodePtr
GetStringTypeW
SetUnhandledExceptionFilter
WriteFile
FlushFileBuffers
GetCommandLineA
HeapDestroy
HeapFree
SetStdHandle
GetFileAttributesA
HeapCreate
GetEnvironmentStringsW
SetHandleCount
UnhandledExceptionFilter
GetCurrentProcess
GetTickCount
GetSystemTimeAsFileTime
LCMapStringW
IsBadWritePtr
GetFileType
VirtualFree
HeapSize
HeapReAlloc
GetOEMCP
ExitProcess

user32

GetWindowLongW
GetSystemMetrics
LoadBitmapW
GetWindowTextW
GetDC
GetMenuCheckMarkDimensions
EnableWindow
IsWindowEnabled
GetParent
EnableMenuItem
GetLastActivePopup
CheckMenuItem
MessageBoxW
ReleaseDC
LoadCursorW
ModifyMenuW
GetSysColor
GetSysColorBrush

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

shell32

SHGetSpecialFolderPathW

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCloseKey

Sections

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

085ee6bb04d70cc7c43e7475f9fa5d04

Headers

File Characteristics

Imports

ole32

gdi32

shlwapi

kernel32

user32

winspool.drv

shell32

advapi32

Sections

.text Size: 108KB - Virtual size: 108KB

.rdata Size: 3KB - Virtual size: 2KB

.bss Size: 79KB - Virtual size: 79KB

.tls Size: 1024B - Virtual size: 352KB

.text
Size: 108KB - Virtual size: 108KB

.rdata
Size: 3KB - Virtual size: 2KB

.bss
Size: 79KB - Virtual size: 79KB

.tls
Size: 1024B - Virtual size: 352KB