650c797b4e3a018330ff7b5ebe95ac9b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

650c797b4e3a018330ff7b5ebe95ac9b_JaffaCakes118
Size

406KB
MD5

650c797b4e3a018330ff7b5ebe95ac9b
SHA1

68ae80eb224f195d193be449fc00614c7a49c90e
SHA256

6e1cd4dcd8f80f4e5906be1f08bbb06ed03aca0ac767a7c08b84f2c939b93011
SHA512

9fb97b2e563e30bbaaaf9af4151674fc6bb362507f10417dc073010c250c5fc3cf4f8482ca9094cc18c252d2943d660c7d559310b5e1a1ca04403072edb07781
SSDEEP

6144:Vd6PBDD1rVBFYQKytrKOOTj3lL5HRh8s+LbY+DI1sK1QgunrCQUp4URvAl:2PpxVHDtrKvf3R7hRYbYz1qrm4AAl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
650c797b4e3a018330ff7b5ebe95ac9b_JaffaCakes118

Files

650c797b4e3a018330ff7b5ebe95ac9b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0842da2fdc51d1febffa5c8ce3454bf8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadDirectoryChangesW
SearchPathW
GetPrivateProfileSectionW
FileTimeToLocalFileTime
FlushViewOfFile
ExitThread
CreateMailslotA
GlobalUnlock
GetFileAttributesW
LCMapStringA
GetConsoleCP
GetSystemDirectoryW
CreateDirectoryA
DeleteAtom
GetComputerNameA
AddAtomA
WriteConsoleOutputA
Sleep
WaitForSingleObjectEx
CreateFileA
EnumResourceTypesA
FreeLibrary
GetPrivateProfileStructA
GetDateFormatA
lstrlenA
GetFileTime
GetTempPathW
GetLongPathNameA
CreateSemaphoreW
VirtualUnlock
OpenSemaphoreA
GlobalReAlloc
lstrlenW
WaitNamedPipeW
WinExec
ReadConsoleInputW
GetStringTypeExA
GetTempFileNameA
SetConsoleOutputCP
SetConsoleCtrlHandler
GetTapeParameters
BeginUpdateResourceA
CopyFileW
CreateProcessW
SetProcessShutdownParameters
_lread
SetConsoleActiveScreenBuffer
SetThreadLocale
GetLogicalDriveStringsW
IsBadCodePtr
FindAtomW
ExpandEnvironmentStringsA
SetProcessWorkingSetSize
lstrcpyA
IsDBCSLeadByte
CreateFileMappingA
LocalLock
WritePrivateProfileSectionA
GetCurrentDirectoryA
OpenMutexA
ScrollConsoleScreenBufferW
ReadConsoleW
WaitForMultipleObjects
GetSystemDirectoryA
QueryDosDeviceA
ResetEvent
GetConsoleCursorInfo
SetFileAttributesW
GetConsoleScreenBufferInfo
lstrcpynW
MapViewOfFile
VirtualProtect
GetModuleHandleA
TlsGetValue
OpenProcess
GetConsoleOutputCP
GetCurrentThreadId
GetModuleFileNameA
GetLastError
UnlockFile
IsBadReadPtr
ExpandEnvironmentStringsW
GetProcessTimes
FreeConsole
GetBinaryTypeA
GetStdHandle
GetExitCodeProcess
lstrcatA
CreateDirectoryExA
GlobalFree
SetCommState
RemoveDirectoryW
TryEnterCriticalSection
GetVolumeInformationA
GetDateFormatW
FindResourceA
ReadConsoleA
GetCommState
LocalAlloc
WaitForMultipleObjectsEx
FindAtomA
SetLastError
GetVersionExA
GetStartupInfoA

user32

CreateDialogParamW
CopyIcon
SendInput
PtInRect
MoveWindow

gdi32

GetNearestPaletteIndex
GetWindowExtEx
EnumFontsW
StartDocA
Chord
ExtTextOutW
SetGraphicsMode
TextOutA
GetCharacterPlacementA
CreateHalftonePalette
RectInRegion
CopyEnhMetaFileA
GetClipBox

comdlg32

GetFileTitleA
CommDlgExtendedError
GetSaveFileNameA
ChooseColorA

advapi32

ObjectDeleteAuditAlarmW
NotifyBootConfigStatus
AbortSystemShutdownW
RegDeleteKeyA
IsValidSid
SetKernelObjectSecurity
CryptDestroyKey
GetPrivateObjectSecurity
RegSetValueExW
RegCreateKeyExW
RegReplaceKeyW
CloseEventLog

shell32

DragQueryFileA
SHAppBarMessage

ole32

CoCreateGuid
CoResumeClassObjects
GetClassFile
OleConvertOLESTREAMToIStorage

oleaut32

VariantChangeType
SysAllocStringLen
SafeArrayCreateVector
SafeArrayGetElement

comctl32

ImageList_GetImageInfo
ImageList_SetDragCursorImage

shlwapi

PathSkipRootW
SHSetValueW
PathIsFileSpecA
PathRemoveFileSpecA
wnsprintfW
PathStripPathW
StrChrIW
PathCombineW
SHRegOpenUSKeyW
SHSetValueA
PathParseIconLocationW
PathAddBackslashW
SHOpenRegStream2W
PathCommonPrefixW

setupapi

SetupGetInfFileListA
SetupIterateCabinetW
SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDriverInfoW
SetupCloseFileQueue
SetupGetIntField

msvcrt

_controlfp
_except_handler3
__set_app_type
_exit
_XcptFilter
exit
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
_acmdln
__getmainargs

Sections

.text
Size: 268KB - Virtual size: 266KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 126KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0842da2fdc51d1febffa5c8ce3454bf8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

setupapi

msvcrt

Sections

.text Size: 268KB - Virtual size: 266KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 126KB - Virtual size: 126KB

.text
Size: 268KB - Virtual size: 266KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 126KB - Virtual size: 126KB