4b22ce11bfac6453edd6a61dcae92e19_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

4b22ce11bfac6453edd6a61dcae92e19_JaffaCakes118
Size

324KB
MD5

4b22ce11bfac6453edd6a61dcae92e19
SHA1

554017e2c73832770a09b28e7dde0b597220c589
SHA256

e0f0bf4e2447edb0d925de970e1cc6117e9455966d41d7e7d38ebd33fc07e89f
SHA512

78694ab80eaa9a4f0379a2c5cafa37216e4ca3d85c58031206493f463c8220f36e335b0ede926539783aeb95277a238f15228636c5da315587b7e411ac608485
SSDEEP

6144:JWSYenpATt1UoGPZI4iypb2UvXqzoP/d4u4D+f6DGP/HU628T:QSfpATbUowdpbczoXdR/Ps6rT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4b22ce11bfac6453edd6a61dcae92e19_JaffaCakes118

Files

4b22ce11bfac6453edd6a61dcae92e19_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d833a3893083704aaf0836aefa61981b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\mlyv

Imports

user32

InvalidateRect
CreateMDIWindowW
DrawEdge
RegisterClassExA
EnumWindowStationsW
FindWindowExA
DestroyCaret
DefWindowProcW
OpenDesktopA
DdeKeepStringHandle
MapWindowPoints
ShowWindow
MessageBoxA
GetWindowRgn
GetWindowPlacement
TabbedTextOutW
LoadAcceleratorsW
GetWindowLongW
EndMenu
DialogBoxIndirectParamA
EditWndProc
OpenWindowStationW
CreateWindowExA
SwapMouseButton
IsZoomed
RegisterClassA
ValidateRgn
SetSystemCursor
DestroyWindow
GetClipCursor
GetInputState
CreateIcon
CallNextHookEx
SetMenuInfo
LoadMenuIndirectA

gdi32

SetViewportExtEx
CreatePolyPolygonRgn
CreateColorSpaceA
InvertRgn
GetMetaFileBitsEx
ScaleViewportExtEx
EnumFontFamiliesA
SetAbortProc
OffsetWindowOrgEx
GetTextCharsetInfo
CreateDIBSection
SetTextJustification
GetTextColor
SelectPalette
SetDIBits
SetFontEnumeration
DrawEscape
CancelDC
CreateEllipticRgnIndirect
CreateHalftonePalette
Ellipse
EnumFontFamiliesExW

kernel32

WideCharToMultiByte
GetFileType
FlushFileBuffers
GetStringTypeW
InterlockedIncrement
GetCommandLineW
GetModuleHandleA
VirtualFree
GetSystemTimeAsFileTime
InterlockedDecrement
InterlockedExchange
WriteFile
GetLastError
HeapReAlloc
OpenMutexA
FreeEnvironmentStringsW
SetEnvironmentVariableA
CompareStringW
HeapAlloc
CloseHandle
SetHandleCount
GetPrivateProfileIntA
LocalFlags
GetCurrentThread
RtlUnwind
GetStringTypeA
EnterCriticalSection
GetDriveTypeA
FreeEnvironmentStringsA
DeleteCriticalSection
SetFilePointer
WaitCommEvent
GetCurrentThreadId
UnhandledExceptionFilter
GetCPInfo
TlsFree
TlsSetValue
GetModuleFileNameA
GetCommandLineA
GetVersion
GetTickCount
GetLocalTime
VirtualQuery
GetFileTime
GetEnvironmentStrings
ReadFile
CreateDirectoryA
GetCurrentProcessId
InitializeCriticalSection
GetStartupInfoA
GetProcAddress
HeapFree
GetEnvironmentStringsW
SetStdHandle
IsBadWritePtr
GetStartupInfoW
HeapCreate
TerminateProcess
GetStdHandle
GetModuleFileNameW
CompareStringA
LeaveCriticalSection
GetCurrentProcess
HeapDestroy
QueryPerformanceCounter
GetTimeZoneInformation
LoadLibraryA
MultiByteToWideChar
GetSystemTime
LCMapStringA
TlsGetValue
GetDriveTypeW
LCMapStringW
GetConsoleOutputCP
SetLastError
CreateMutexA
VirtualAlloc
TlsAlloc
ExitProcess

comctl32

ImageList_Draw
MakeDragList
ImageList_DragShowNolock
ImageList_SetIconSize
CreatePropertySheetPageA
InitCommonControlsEx
ImageList_Duplicate
ImageList_SetFlags
ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_Merge
ImageList_EndDrag
InitMUILanguage
ImageList_GetBkColor
DestroyPropertySheetPage
CreateUpDownControl
ImageList_Copy
DrawStatusText
CreatePropertySheetPage
ImageList_Write
ImageList_Add
ImageList_Replace
ImageList_Create

Sections

.text
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d833a3893083704aaf0836aefa61981b

Headers

File Characteristics

PDB Paths

Imports

user32

gdi32

kernel32

comctl32

Sections

.text Size: 64KB - Virtual size: 62KB

.rdata Size: 88KB - Virtual size: 85KB

.data Size: 92KB - Virtual size: 102KB

.rsrc Size: 76KB - Virtual size: 72KB

.text
Size: 64KB - Virtual size: 62KB

.rdata
Size: 88KB - Virtual size: 85KB

.data
Size: 92KB - Virtual size: 102KB

.rsrc
Size: 76KB - Virtual size: 72KB