5ff723473a2ccc578415d7e680b6b370_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5ff723473a2ccc578415d7e680b6b370_JaffaCakes118
Size

277KB
MD5

5ff723473a2ccc578415d7e680b6b370
SHA1

c030cd271796f038c1dddf76bd95f704d6ea1fa3
SHA256

b3c66e92a0f541749572163ecdb0766abd2ae9072765fc02db448547046e3754
SHA512

bd4d3c5939dc3b58fc110c50c73a770ea31784c14c52e2c8a66d8b6dba71a7f612fe704f024b6ce3ac81b082fdd2ed041cf5f4a6306ba29c3e4767ccf81f7ac9
SSDEEP

6144:G7F4IQjKAVeX2TALxysWEDPqYtOJbEaYB:GJQHVeX2TALwSDPqY8JbEaY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ff723473a2ccc578415d7e680b6b370_JaffaCakes118

Files

5ff723473a2ccc578415d7e680b6b370_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bfbe06bc2b5774c2713f2001f28f077d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesA
GetModuleFileNameA
GetTempFileNameA
CopyFileA
CreateDirectoryA
DeleteFileA
GlobalAlloc
WinExec
WritePrivateProfileStringA
GetPrivateProfileStringA
GlobalDeleteAtom
GetTickCount
GlobalLock
GlobalUnlock
CloseHandle
MultiByteToWideChar
OpenFileMappingA
MapViewOfFile
CreateFileMappingA
GetLastError
UnmapViewOfFile
LocalLock
LocalAlloc
LocalUnlock
LocalFree
SizeofResource
GlobalReAlloc
LockResource
FindResourceA
LoadResource
GetProfileStringA
FreeResource
lstrcatA
GetStartupInfoA
GlobalAddAtomA
GetFileAttributesA
SetStdHandle
LCMapStringA
LCMapStringW
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
SetUnhandledExceptionFilter
WideCharToMultiByte
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
WriteFile
GetOEMCP
GetACP
GetCPInfo
GetFileType
GetStdHandle
SetHandleCount
SetFilePointer
CreateFileA
FlushFileBuffers
ReadFile
VirtualFree
HeapCreate
GlobalFree
HeapDestroy
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
GetModuleHandleA
HeapReAlloc
HeapAlloc
HeapFree
RtlUnwind
GetProcAddress
LoadLibraryA
SetEndOfFile
HeapSize
VirtualAlloc

user32

UnpackDDElParam
FreeDDElParam
ShowWindow
SetWindowPos
MessageBoxA
LoadStringA
wsprintfA
IntersectRect
GetCursorPos
GetWindowRect
SetRect
IsWindow
GetDC
ReleaseDC
SendMessageA
DialogBoxParamA
MoveWindow
GetClientRect
EndDialog
DestroyCursor
SetTimer
KillTimer
InvalidateRect
SetCursor
PtInRect
LoadCursorA
GetAsyncKeyState
EndPaint
BeginPaint
SetDlgItemTextA
GetDlgItemTextA
CopyRect
GetWindow
GetClassNameA
GetTopWindow
GetDesktopWindow
IsWindowVisible
GetWindowLongA
SetWindowLongA
EnumWindows
GetUpdateRect
IsRectEmpty
UpdateWindow
PostMessageA
SetRectEmpty
UnionRect
LoadIconA
GetMessageA
FindWindowA
PostQuitMessage
SetClassWord
SetWindowTextA
DefWindowProcA
SetForegroundWindow
TrackPopupMenu
DestroyWindow
DestroyMenu
CreateWindowExA
LoadMenuA
GetSubMenu
RegisterClassA
CheckMenuItem
OffsetRect
FillRect
DispatchMessageA
TranslateMessage
EqualRect

gdi32

RealizePalette
GetObjectA
DeleteDC
DeleteObject
BitBlt
SetMapMode
SetBkColor
CreateCompatibleBitmap
CreateBitmap
GetMapMode
SelectObject
CreateCompatibleDC
GetPixel
GetStockObject
SetBkMode
GetDeviceCaps
CreateDIBitmap
CreatePalette
CreateSolidBrush
SelectClipRgn
CreateRectRgnIndirect
SetRectRgn
SelectPalette

comdlg32

GetOpenFileNameA

advapi32

RegQueryValueA
RegCloseKey
RegSetValueExA
RegCreateKeyA
RegDeleteValueA
RegOpenKeyExA
RegQueryValueExA

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA

ole32

CoInitialize
CoCreateInstance
CoUninitialize

winmm

mciSendCommandA

Sections

.text
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 155KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bfbe06bc2b5774c2713f2001f28f077d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

winmm

Sections

.text Size: 90KB - Virtual size: 90KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 21KB - Virtual size: 36KB

.idata Size: 5KB - Virtual size: 4KB

.rsrc Size: 155KB - Virtual size: 154KB

.text
Size: 90KB - Virtual size: 90KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 21KB - Virtual size: 36KB

.idata
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 155KB - Virtual size: 154KB