4ca3b31e124368e9ebaaa64ece06885a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4ca3b31e124368e9ebaaa64ece06885a_JaffaCakes118
Size

424KB
MD5

4ca3b31e124368e9ebaaa64ece06885a
SHA1

8e92534afad91a150d1fdd43cfcb9bf598a46df2
SHA256

bdb6785e64a80fa47f05e3c61c9579ad9226472c0becb30bf00be7e6d71b5a34
SHA512

14e3d05a921b77bb3956d68bbf3bc5903f223177b839cc53377475cb84e424bb08c01f67bb9e7dd005bf170cbdae5476b839fbab575764cd07f3a92ab2b6523b
SSDEEP

12288:e2FzKpt0ox2fNZh8p7fwQd63qLjsIwAyQ4dg+E4MI:eTj55fwa63EsIwAXuEPI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ca3b31e124368e9ebaaa64ece06885a_JaffaCakes118

Files

4ca3b31e124368e9ebaaa64ece06885a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fd24db4e3c3eaf5d1625bd6f181f9b61

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsDialogMessageW
EndPaint
TranslateAcceleratorW
SetDeskWallpaper
RemovePropW
SwitchDesktop
CheckDlgButton
MessageBoxA
SetProcessDefaultLayout
VkKeyScanExA
GetMenuItemInfoA
GetKeyboardLayoutNameW
TabbedTextOutA
GetDlgItem
CheckMenuRadioItem
GetKeyboardLayout
CreateIconIndirect
EmptyClipboard
MsgWaitForMultipleObjects
EnumClipboardFormats
SendIMEMessageExW

advapi32

CryptSetProvParam
RegLoadKeyA
RegQueryValueExA
CryptGetProvParam
CryptHashSessionKey
CryptGetDefaultProviderA
AbortSystemShutdownA
RegQueryMultipleValuesW
DuplicateTokenEx
RegDeleteValueW
CryptVerifySignatureW
AbortSystemShutdownW
RegEnumValueA
CryptEnumProviderTypesA

gdi32

SetPixelFormat

shell32

DoEnvironmentSubstW
SHGetFileInfoA
SHGetPathFromIDListA
SHGetInstanceExplorer
SHGetDataFromIDListA
SHGetFileInfo
ExtractAssociatedIconW
SHGetDataFromIDListW
ShellAboutA
ShellExecuteEx
ShellExecuteW
SHGetSpecialFolderPathA
SHGetDiskFreeSpaceA
SHFileOperationA
SHGetFileInfoW

kernel32

lstrcat
QueryPerformanceCounter
GetStringTypeA
SetHandleCount
SetConsoleOutputCP
TlsFree
GetSystemInfo
MultiByteToWideChar
LoadLibraryA
GetTickCount
InterlockedExchange
UnhandledExceptionFilter
CompareStringA
CreateMailslotA
EnumCalendarInfoA
LCMapStringW
GetCurrentThread
GetEnvironmentStringsW
GetFileType
GetCurrentProcess
TlsGetValue
GetCurrentProcessId
FindFirstFileA
GetACP
WriteFile
SetEnvironmentVariableA
DeleteCriticalSection
GetStdHandle
VirtualProtect
IsValidLocale
GetCPInfo
WideCharToMultiByte
LeaveCriticalSection
VirtualAlloc
CompareStringW
lstrcmpA
GetCurrentThreadId
FreeEnvironmentStringsA
HeapFree
GetTimeFormatA
HeapCreate
HeapReAlloc
GetDateFormatA
TerminateProcess
GetUserDefaultLCID
GetCommandLineW
EnumTimeFormatsA
EnterCriticalSection
WaitNamedPipeW
GetLocaleInfoA
GetStartupInfoW
GetLastError
GetStartupInfoA
GetVersionExA
GetFileAttributesExW
GetModuleHandleA
SetComputerNameW
GetTimeZoneInformation
EnumSystemCodePagesA
GetNamedPipeInfo
VirtualQuery
LocalHandle
GetStringTypeW
VirtualFree
ExitProcess
SetConsoleCtrlHandler
GetEnvironmentStrings
WritePrivateProfileSectionW
LCMapStringA
SetWaitableTimer
SetConsoleCursorPosition
IsValidCodePage
HeapAlloc
HeapSize
GetSystemTimeAsFileTime
GetModuleFileNameA
GetNamedPipeHandleStateW
GetModuleFileNameW
TlsAlloc
FindClose
GetProcAddress
HeapDestroy
FreeEnvironmentStringsW
TlsSetValue
InitializeCriticalSection
GetOEMCP
GetLocaleInfoW
RtlUnwind
IsBadWritePtr
GetCommandLineA
EnumSystemLocalesA
SetLastError

comdlg32

PrintDlgW
PageSetupDlgA
GetFileTitleW
GetOpenFileNameW
ReplaceTextW
LoadAlterBitmap
GetFileTitleA
GetOpenFileNameA
PrintDlgA
FindTextW
ReplaceTextA
ChooseFontW
ChooseColorA

Sections

.text
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 278KB - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd24db4e3c3eaf5d1625bd6f181f9b61

Headers

File Characteristics

Imports

user32

advapi32

gdi32

shell32

kernel32

comdlg32

Sections

.text Size: 140KB - Virtual size: 139KB

.data Size: 278KB - Virtual size: 277KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 140KB - Virtual size: 139KB

.data
Size: 278KB - Virtual size: 277KB

.rsrc
Size: 5KB - Virtual size: 4KB