6395ddbd113e578984640732f67b73fc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6395ddbd113e578984640732f67b73fc_JaffaCakes118
Size

174KB
MD5

6395ddbd113e578984640732f67b73fc
SHA1

05eddedfcff013d4cd3a5699048e8f658d37b49d
SHA256

2f1d68c0f8a16f884cffabc602b4567245b33ccbaa95ff97067f2c08bdd1f8a8
SHA512

99c95effc8a8b60b77051196e1f913cb02d878690df67442ab92ce4e3077e86591cb8e5d573254417dfa820fa71b211ba98140edf86e3baaec0fe63564f43677
SSDEEP

3072:2uJUGJkg2m0cipupzRNZHN26vEFYMQ6aqO6j2M3whK76w9JtPdPkxWT:275g2m0L8Rjt5clQ6axO3KKmw9JsO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6395ddbd113e578984640732f67b73fc_JaffaCakes118

Files

6395ddbd113e578984640732f67b73fc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

739e8c82a5d34552ffdee3195097db92

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
InterlockedDecrement
FreeLibrary
LoadResource
ReplaceFileW
lstrcpynW
FindCloseChangeNotification
CreateThread
LocalFree
GetPrivateProfileStringW
MultiByteToWideChar
MulDiv
lstrcmpW
GetProcessId
CloseHandle
GlobalSize
GetModuleFileNameW
WideCharToMultiByte
Sleep
GetSystemTimeAsFileTime
QueryPerformanceCounter
FindNextChangeNotification
GetLastError
LoadLibraryA
GlobalUnlock
GetLocaleInfoW
GetACP
lstrcpyW
ResumeThread
FindFirstChangeNotificationW
EnumResourceTypesA
FindResourceW
FileTimeToLocalFileTime
WritePrivateProfileStringW
SetThreadPriority
DeleteCriticalSection
LoadLibraryW
GlobalFree
LoadLibraryExW
ExitProcess
WaitForSingleObject
GetCurrentDirectoryW
GetThreadLocale
GetFileAttributesW
GlobalAlloc
GlobalLock
lstrlenW
FileTimeToSystemTime
InitializeCriticalSection
DeleteFileW
SetFileAttributesW
GetVersionExW
GetVersionExA
InterlockedExchange
FindClose
GetVersion
GetPrivateProfileIntW
GetProcAddress
GetCurrentThreadId
GetModuleHandleW
InterlockedIncrement
FindFirstFileW
LockResource
GetCurrentProcessId

comctl32

ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_Add
ImageList_AddMasked
ImageList_Destroy
ImageList_GetImageInfo
ImageList_GetIcon
InitCommonControlsEx
PropertySheetW
ImageList_LoadImageW
_TrackMouseEvent
ImageList_Draw

shell32

SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHAppBarMessage
SHBrowseForFolderW
SHGetFileInfoW
ShellExecuteW
ShellExecuteExW
SHGetMalloc
DragAcceptFiles
Shell_NotifyIconW

gdiplus

GdipCreateHBITMAPFromBitmap
GdipCloneImage

ole32

DoDragDrop
CoCreateInstance
OleRun

advapi32

RegOpenKeyW
RegCreateKeyExW
RegEnumValueW
RegSetValueExW
RegEnumKeyExW
RegDeleteValueW
RegOpenKeyExW
RegDeleteKeyW
RegQueryValueExW
RegCloseKey

gdi32

GetTextExtentPoint32W
GetBkColor
SetPixelV
Rectangle
CreateDIBSection

user32

TabbedTextOutW
MapVirtualKeyW
UnionRect
EqualRect
ShowWindow
LockWindowUpdate
GetMessagePos
GetSystemMetrics
DeferWindowPos
BeginDeferWindowPos
MapWindowPoints
DrawFocusRect
ReleaseDC
EnableWindow
LoadIconW
DrawEdge
GetWindowLongW
GetNextDlgTabItem
DrawFrameControl
GetWindowRect
GetMenu
SetCapture
EnableMenuItem
CopyIcon
SetWindowLongW
GetDlgItem
SetTimer
FillRect
GetDesktopWindow
GetSystemMenu
OffsetRect
GetMenuItemInfoW
wsprintfW
KillTimer
ScreenToClient
GetMessageW
IsRectEmpty
TranslateMessage
FindWindowW
GetMenuDefaultItem
GetWindowPlacement
GetClipboardData
SetScrollPos
GetActiveWindow
SystemParametersInfoA
DrawAnimatedRects
DestroyCaret
SetWindowRgn
SendMessageW
DrawStateW
HideCaret
SetMenu
SetParent
IntersectRect
GetSysColorBrush
ShowCaret
SetForegroundWindow
GetLastActivePopup
RedrawWindow
SetFocus
SystemParametersInfoW
IsClipboardFormatAvailable
GetClassLongW
IsZoomed
InflateRect
GetClassNameW
LoadBitmapW
LoadMenuW
UpdateWindow
MessageBeep
IsCharLowerW
GetMenuItemCount
GetSubMenu
SetCursor
PeekMessageW
GetCursor
IsWindow
InsertMenuW
GetTabbedTextExtentW
CallWindowProcW
SetWindowsHookExW
SetCaretPos
EnumChildWindows
WindowFromPoint
ShowScrollBar
DragDetect
EmptyClipboard
BringWindowToTop
DrawIcon
CreateCaret
GetSysColor
DeleteMenu
GetFocus
LoadImageW
GetKeyState
GetIconInfo
GetCapture
SetRectEmpty
SetClipboardData
MoveWindow
GetWindowTextW
GetDC
GetMenuItemID
RegisterClipboardFormatW
ReleaseCapture
CopyAcceleratorTableW
IsWindowVisible
CopyRect
EndDeferWindowPos
CloseClipboard
GetParent
GetCursorPos
CloseWindow
LoadCursorW
GetDlgCtrlID
SetMenuDefaultItem
GetScrollInfo
SetRect
DrawTextW
mouse_event
OpenClipboard
SetActiveWindow
CreateAcceleratorTableW
GrayStringW
IsMenu
CreateIconIndirect
DestroyAcceleratorTable
MapVirtualKeyExW
UnhookWindowsHookEx
EnableScrollBar
SetScrollInfo
CreatePopupMenu
CallNextHookEx
GetForegroundWindow
CheckMenuItem
PostMessageW
SetWindowPos
GetKeyNameTextW
PtInRect
ClientToScreen
DrawIconEx
DestroyWindow
IsIconic
GetScrollPos
GetKeyboardLayout
DestroyIcon
InvalidateRect
RegisterWindowMessageW
SetCursorPos
TrackPopupMenu
DispatchMessageW
GetMenuState
IsChild
GetWindow
DrawTextExW
GetDCEx
GetClientRect
DestroyCursor
AppendMenuW
DestroyMenu

Sections

.text
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

739e8c82a5d34552ffdee3195097db92

Headers

File Characteristics

Imports

kernel32

comctl32

shell32

gdiplus

ole32

advapi32

gdi32

user32

Sections

.text Size: 98KB - Virtual size: 97KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 67KB - Virtual size: 66KB

.tls Size: 1024B - Virtual size: 372KB

.text
Size: 98KB - Virtual size: 97KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 67KB - Virtual size: 66KB

.tls
Size: 1024B - Virtual size: 372KB