627cefec81b889ccbf49a5dbaf4f1764_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

627cefec81b889ccbf49a5dbaf4f1764_JaffaCakes118
Size

147KB
MD5

627cefec81b889ccbf49a5dbaf4f1764
SHA1

bd2384cc047609adc1d492aeb04bd1b2d89561f2
SHA256

14b549c2f8633aff626ebc8609251f81311c26f48ea3eefa4767a43fe1094cde
SHA512

66bcb6f5c5be69c4584f8541cb850d61f1392c01cea8eb0717d97cef5cfef38f98e1f23b38835228f941d21ba8a591e76461434ec681e3563664c4e4f81a4199
SSDEEP

3072:iQza/nbbL801B/Yyoy+WhxCUe4Hvt9ZVKP+xHw9:R4d1uVTTic2Nw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
627cefec81b889ccbf49a5dbaf4f1764_JaffaCakes118

Files

627cefec81b889ccbf49a5dbaf4f1764_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3fe2215a20fa46653e3fa903f6db3d68

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

OutputDebugStringA
VirtualFree
LCMapStringW
GetLocaleInfoA
VirtualProtect
GetModuleHandleA
GetStartupInfoA
QueryPerformanceCounter

user32

GetForegroundWindow
GetDC
DestroyWindow
DrawEdge
GetIconInfo
LoadCursorA
BeginPaint
RemovePropA
SetForegroundWindow
GetParent
GetSysColor

msvcrt

log10
free
_snprintf
_adjust_fdiv
__p__commode
exit
_initterm
_acmdln
__getmainargs
__dllonexit
__CxxFrameHandler
_XcptFilter
__set_app_type
__setusermatherr
_except_handler3
__p__fmode
fprintf
_snwprintf
_pipe
_getch

oleaut32

GetErrorInfo
VariantClear
SafeArrayPtrOfIndex
SafeArrayCreate

comctl32

ImageList_Add
ImageList_SetImageCount
ImageList_DragShowNolock
PropertySheetA
ImageList_GetIcon
ImageList_Destroy
ImageList_BeginDrag
ImageList_DrawEx
ImageList_GetImageCount
CreatePropertySheetPageA

ole32

CreateItemMoniker
CoTaskMemFree
ReleaseStgMedium
CoRegisterMessageFilter
CoGetInterfaceAndReleaseStream
OleSetClipboard
CoLoadLibrary
OleIsCurrentClipboard
CoSetProxyBlanket
IsEqualGUID
CLSIDFromProgID
CreateILockBytesOnHGlobal
OleSetMenuDescriptor

advapi32

RegSetValueExA
RegCreateKeyExW
RegQueryInfoKeyA
EqualSid
GetLengthSid
RegOpenKeyExW
QueryServiceStatus
RegDeleteValueW
CryptCreateHash
RegEnumValueW

shell32

ExtractIconExA
DoEnvironmentSubstW
DragAcceptFiles
SHGetPathFromIDListW
SHChangeNotify
SHAddToRecentDocs

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3fe2215a20fa46653e3fa903f6db3d68

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

oleaut32

comctl32

ole32

advapi32

shell32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 135KB - Virtual size: 134KB

.data Size: 6KB - Virtual size: 5KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 135KB - Virtual size: 134KB

.data
Size: 6KB - Virtual size: 5KB