5f3c999cc8b6b6e5342199f462bffb60_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5f3c999cc8b6b6e5342199f462bffb60_JaffaCakes118
Size

191KB
MD5

5f3c999cc8b6b6e5342199f462bffb60
SHA1

d3d5df40f332b0cefad3e488e37428529b7dab1f
SHA256

5a1e0373f132f4b62a32f1ec4950eaa3426b1928ad0a1f13771b7ce7b3510f24
SHA512

f645e31276a9599e00c42c434a21430a8daf6da2ea2cea1293803e410fa7953a11218e7b0cc241de5155ee8f4e2daa8adbb821cf2eb1ce245f546a1c5fa43d70
SSDEEP

3072:by/uS/vmYwVPtM+bcyQ1IHmltUzG0QfQnjTRUm2eJPVYkbe7nnu32zDDXpgP7AVd:W/PvIuoccHmzGXjVJPVYi32znpoEVdP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f3c999cc8b6b6e5342199f462bffb60_JaffaCakes118

Files

5f3c999cc8b6b6e5342199f462bffb60_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e4d23a173ebbea8c271e0ca988ffa89f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

comctl32

ImageList_Create
ImageList_Add
ImageList_GetIconSize
ImageList_DrawEx
ImageList_Destroy

comdlg32

GetFileTitleA

user32

ToAscii
EmptyClipboard
SetScrollRange
RegisterClassW
DestroyCursor
WinHelpW
SetWindowPos
IsClipboardFormatAvailable
DefWindowProcW
DestroyIcon
UnhookWindowsHookEx
SetClipboardData
SetWindowsHookExW
DrawEdge
MonitorFromWindow
ClipCursor
GetSysColorBrush
ChildWindowFromPoint
CallNextHookEx
GetSysColor

ole32

ProgIDFromCLSID
CoFreeUnusedLibraries
CoGetClassObject
OleGetAutoConvert
CoTaskMemFree
OleRun
CoTaskMemAlloc
CoCreateGuid
StgCreateDocfileOnILockBytes
GetHGlobalFromStream
RevokeDragDrop
CreateStreamOnHGlobal
OleRegGetUserType
RegisterDragDrop
CoGetMalloc
ReleaseStgMedium
CoCreateInstance
CLSIDFromString
OleDuplicateData
StringFromCLSID
CLSIDFromProgID
GetHGlobalFromILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal

kernel32

CreateFiberEx
GetFileAttributesA
UnlockFile
LocalAlloc
FindResourceExA
VerLanguageNameW
SetCommConfig
GetUserDefaultLangID
CompareStringW
SearchPathW
EnumResourceNamesW
GetFileType
SetEndOfFile
GetVersionExW
IsDBCSLeadByte
LockFile
GetVolumeInformationW
FlushFileBuffers
FlushFileBuffers
GetProfileStringW
GetFileTime
GetSystemTime
FileTimeToSystemTime
FileTimeToLocalFileTime
GetSystemDirectoryW

rpcrt4

RpcStringBindingComposeA
RpcBindingFromStringBindingA
RpcBindingSetAuthInfoA
NdrClientCall
RpcStringFreeA

shlwapi

PathStripToRootW
PathCanonicalizeW
PathIsRootW
PathIsRelativeW
PathIsURLW
PathCombineW

gdi32

CreateFontIndirectA
PlgBlt
StrokePath
AnimatePalette
SetStretchBltMode
GetPath
SetTextColor
PolyBezier
RoundRect
CreatePen
GetBkColor
ExtCreatePen
GetBitmapBits
FlattenPath
SetDIBits

Sections

.text
Size: 165KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4d23a173ebbea8c271e0ca988ffa89f

Headers

File Characteristics

Imports

comctl32

comdlg32

user32

ole32

kernel32

rpcrt4

shlwapi

gdi32

Sections

.text Size: 165KB - Virtual size: 164KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 22KB - Virtual size: 21KB

.lib Size: 512B - Virtual size: 220KB

.text
Size: 165KB - Virtual size: 164KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 22KB - Virtual size: 21KB

.lib
Size: 512B - Virtual size: 220KB