5d2f6f1d38c0db59c996ec2d87107014_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5d2f6f1d38c0db59c996ec2d87107014_JaffaCakes118
Size

76KB
MD5

5d2f6f1d38c0db59c996ec2d87107014
SHA1

d06cb0aba1c489eee70d19ff0c14c78f89e0a692
SHA256

59a5d04518b6a1b197d461221531dcb92dcc3e4555736e8fb3bc2dfbd2543de2
SHA512

29c099baa47305a994113b2030ac00e48e0a76384b826968dd93e254c0d560d277fa2d5961324ec98f7c4632abb2c2f93162d15b33a029d9c40b2a9eda68e9e1
SSDEEP

1536:QnCetAOtEGKM2wDmU30DIxNOgbcbA0MM0mK9Ph97ZO8E9f/BLD:xqW1SpN3aA0Mf7c8E9f/BLD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d2f6f1d38c0db59c996ec2d87107014_JaffaCakes118

Files

5d2f6f1d38c0db59c996ec2d87107014_JaffaCakes118
.exe windows:4 windows x86 arch:x86

00ab342ae94318820ad8f06b68928fa6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellAboutA
ShellExecuteA
ShellExecuteExA
DragFinish
DragQueryFileA
DragAcceptFiles
ord62
ExtractAssociatedIconA

olesvr32

ord2
ord10
ord5
ord4
ord7
ord6
ord3
ord8

olecli32

ord14
ord38
ord40
ord13
ord6
ord18
ord22
ord29
ord32
ord25
ord3
ord4
ord12
ord35
ord37
ord24
ord11
ord19
ord46
ord27
ord23
ord21
ord2
ord39
ord28
ord36
ord15
ord44
ord9
ord42
ord45
ord43
ord20
ord10
ord41

kernel32

_lread
AddAtomA
GlobalFree
VirtualFree
GetFileType
VirtualAlloc
GetCPInfo
GetOEMCP
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
GetACP
ExitProcess
GetVersion
RtlUnwind
GetEnvironmentStrings
GetStartupInfoA
GetCommandLineA
GlobalDeleteAtom
GlobalAddAtomA
GetModuleHandleA
LocalLock
LocalUnlock
LocalAlloc
MulDiv
FindFirstFileA
LocalFree
RtlMoveMemory
GlobalUnlock
lstrcmpiA
GlobalLock
_lclose
_llseek
_lcreat
OpenFile
lstrlenA
lstrcpyA
GetProcAddress
DeleteFileA
GetLastError
CloseHandle
CreateThread
GlobalReAlloc
FindClose
_lwrite
GetTempFileNameA
GetTempPathA
GetAtomNameA
WaitForSingleObject
DeleteAtom
GlobalAlloc
_lopen
Sleep
GlobalHandle
lstrcatA
lstrcmpA

user32

PostQuitMessage
SetWindowTextA
IsWindow
wsprintfA
ShowWindow
GetSubMenu
EnableMenuItem
InsertMenuA
DestroyMenu
CreatePopupMenu
DeleteMenu
GetClientRect
EndDialog
SetDlgItemTextA
GetSystemMetrics
MessageBoxA
DialogBoxParamA
OemToCharA
BringWindowToTop
EnumThreadWindows
DrawFocusRect
OffsetRect
DrawTextA
PeekMessageA
IsWindowVisible
SetRect
GetWindowDC
SystemParametersInfoA
EnableScrollBar
EnableWindow
CheckRadioButton
IsDlgButtonChecked
IsWindowEnabled
GetDlgItem
UpdateWindow
EndPaint
GetSysColor
BeginPaint
IsClipboardFormatAvailable
DefWindowProcA
ScrollWindow
SetScrollPos
GetScrollRange
GetScrollPos
FillRect
ReleaseCapture
SetCursor
ScreenToClient
SetCapture
IsIconic
SetClipboardData
EmptyClipboard
GetDlgItemTextA
SendDlgItemMessageA
CheckDlgButton
DestroyIcon
DrawIcon
CharUpperBuffA
CharLowerA
RegisterClipboardFormatA
SetRectEmpty
IsRectEmpty
SetFocus
GetMenu
SendMessageA
GetTopWindow
WinHelpA
LoadAcceleratorsA
GetSysColorBrush
GetDC
ReleaseDC
LoadIconA
LoadCursorA
RegisterClassA
DestroyWindow
PostMessageA
TranslateAcceleratorA
TranslateMessage
CloseClipboard
OpenClipboard
GetClipboardData
SetWindowPos
InvalidateRect
GetKeyState
CreateWindowExA
LoadStringA
DispatchMessageA
GetMessageA

gdi32

CreateMetaFileA
SetWindowOrgEx
SetWindowExtEx
CloseMetaFile
CopyMetaFileA
SetBkMode
TextOutA
PatBlt
GetTextExtentPointA
SetTextColor
SetBkColor
GetStockObject
CreateFontIndirectA
DeleteObject
SelectObject
GetDeviceCaps
SetTextAlign

comdlg32

GetOpenFileNameA
GetSaveFileNameA

advapi32

RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegSetValueA
RegCloseKey

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

00ab342ae94318820ad8f06b68928fa6

Headers

File Characteristics

Imports

shell32

olesvr32

olecli32

kernel32

user32

gdi32

comdlg32

advapi32

Sections

.text Size: 40KB - Virtual size: 37KB

.data Size: 4KB - Virtual size: 8KB

.idata Size: 8KB - Virtual size: 4KB

.rsrc Size: 12KB - Virtual size: 10KB

.reloc Size: 8KB - Virtual size: 4KB

.text
Size: 40KB - Virtual size: 37KB

.data
Size: 4KB - Virtual size: 8KB

.idata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 12KB - Virtual size: 10KB

.reloc
Size: 8KB - Virtual size: 4KB