67d77d448237db11b7591945351ca416_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

67d77d448237db11b7591945351ca416_JaffaCakes118
Size

132KB
MD5

67d77d448237db11b7591945351ca416
SHA1

14da51821bfb968d1a069d0f48c3b1d064f2bcb7
SHA256

feefbc609d1a00a5e5228ee3e3018cb79dafb7c435288dcbd361629f21a3743a
SHA512

f8a1ae5e2e448fdc99e0707ba9955a9abf6ff0d287b481f044f8615fb16ee44fcb66c2bfdf38879b7cab9165251399ad940927948c6c1bde8650998717e8f4ee
SSDEEP

3072:yfoAvGJWNXmpSwNmX8ClocGmEzBwlHdjPYeZI7+wOgOU1YRoYW0Gz:0FAhM/ocazCPaqwwtoYk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67d77d448237db11b7591945351ca416_JaffaCakes118

Files

67d77d448237db11b7591945351ca416_JaffaCakes118
.exe windows:5 windows x86 arch:x86

48c864a3231aed3db3f480b3b88a4cc0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

wcscmp
_except_handler3
memcmp
__p__fmode
wcstol
_XcptFilter
_adjust_fdiv
__set_app_type
_controlfp
fclose
log10
__getmainargs
exit
_initterm
_pipe
_wcslwr
_acmdln
__p__commode
__setusermatherr
strchr

kernel32

GetLocalTime
GetDiskFreeSpaceA
lstrcmpiA
GetModuleHandleA
GetVersion
InterlockedCompareExchange
lstrcatA
GlobalHandle
VirtualProtect
GetCommandLineW
InterlockedExchange
GetStdHandle
SetFileAttributesA
GetStartupInfoA
TerminateProcess
GetFileAttributesA
GetConsoleMode
GetTempPathA

advapi32

RegQueryValueExA
RegDeleteKeyW
InitializeAcl
RegEnumKeyExW
EqualSid
CloseServiceHandle

ole32

CoInitialize
CoCreateInstance
StgOpenStorage
CoGetMalloc
CoRegisterClassObject
OleIsCurrentClipboard
CreateStreamOnHGlobal
RevokeDragDrop
CoGetInterfaceAndReleaseStream
IsAccelerator
CLSIDFromString

shell32

SHGetFolderLocation
SHChangeNotify
SHGetPathFromIDListA
SHGetPathFromIDListW
FindExecutableW
SHGetMalloc
SHGetDiskFreeSpaceExW
SHGetSettings
DragQueryFileA

gdi32

CreateHatchBrush
CreateCompatibleBitmap
SetWindowExtEx
BitBlt
OffsetWindowOrgEx
PolyDraw
InvertRgn
GdiFlush

version

VerQueryValueA
GetFileVersionInfoW
GetFileVersionInfoSizeW

user32

TrackPopupMenu
WinHelpA
GetDCEx
SetClipboardData
PostQuitMessage
GetScrollRange
DrawFrameControl
EmptyClipboard
IsWindowEnabled

comctl32

ImageList_GetImageCount
ImageList_BeginDrag
ImageList_GetIconSize
ImageList_Add
CreateToolbarEx
ImageList_DrawEx

oleaut32

VariantCopy
SafeArrayGetElement
SysStringByteLen
SysAllocStringByteLen
SafeArrayGetUBound
SafeArrayPutElement
CreateErrorInfo
VariantClear
SafeArrayRedim

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 17KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

48c864a3231aed3db3f480b3b88a4cc0

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

ole32

shell32

gdi32

version

user32

comctl32

oleaut32

Sections

.text Size: 20KB - Virtual size: 19KB

.data Size: 17KB - Virtual size: 40KB

.rsrc Size: 94KB - Virtual size: 93KB

.text
Size: 20KB - Virtual size: 19KB

.data
Size: 17KB - Virtual size: 40KB

.rsrc
Size: 94KB - Virtual size: 93KB