688a67678cbc4df698d142c809bd4a3c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

688a67678cbc4df698d142c809bd4a3c_JaffaCakes118
Size

1.7MB
MD5

688a67678cbc4df698d142c809bd4a3c
SHA1

69fcaddd6734a7a5fbfc46b8194a1745d2df947c
SHA256

d461e7f86ba378f821300e5f31e57385404f85ddec05e893a3f8c9e489e9f382
SHA512

f2f1d4d57fdc675fdb2ee90c6b8263113eb5d344c38a3bdf55588dedec6454373dd593787ab17961b557b24199643b5e73bd464ace4b9a91ccac1ef5c08b4d82
SSDEEP

49152:XxZEvLHj/ffeJAw6GMhcdST5QOvc41r3Y/wML:XxZEDTffRw6GMhK6COv/eJL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
688a67678cbc4df698d142c809bd4a3c_JaffaCakes118

Files

688a67678cbc4df698d142c809bd4a3c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ae689b3a4100531aee3e80b3e92b567a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

comctl32

ImageList_Destroy
ImageList_Remove

kernel32

VirtualAlloc
GetModuleHandleA
GetCommandLineA
LoadLibraryA
GlobalAlloc
ExitProcess
lstrlenA

comdlg32

GetOpenFileNameA

ole32

MkParseDisplayName

oleaut32

SysReAllocStringLen
SafeArrayGetUBound
SafeArrayPtrOfIndex
SysAllocStringLen
SafeArrayUnaccessData
SafeArrayGetElement
OleLoadPicture

user32

SetCursor
SendMessageW
EmptyClipboard
IsRectEmpty
LoadIconA
GetCapture
UpdateWindow
GetKeyboardLayoutList
GetMessagePos
RedrawWindow
PeekMessageA
AdjustWindowRectEx
CreateIcon
SetFocus
SetCapture
GetIconInfo
GetWindow
IsWindow
GetDC
GetKeyboardLayoutNameA
CallWindowProcA
IsIconic
MapVirtualKeyA
GetClassNameA
GetClipboardData
SetWindowPlacement
ScrollWindow
SetScrollPos
SetScrollRange
MoveWindow
IsWindowUnicode
CharUpperBuffA
EnableScrollBar
LoadBitmapA
SetTimer
ShowScrollBar
GetCursorPos
IsChild
CharLowerBuffA
DrawMenuBar
DrawFrameControl
DispatchMessageW
CreateWindowExA
DrawAnimatedRects
SetWindowsHookExA
SetScrollInfo
InvalidateRect
GetScrollRange
GetCursor
SetClipboardData
KillTimer
TranslateMDISysAccel
CharNextA
IsDialogMessageA
GetTopWindow
DestroyIcon
CharNextW
GetClassInfoA
IsDialogMessageW
GetScrollInfo
IntersectRect
ReleaseCapture
DefMDIChildProcA
OpenClipboard
SetClassLongA
ReleaseDC
DrawIcon
GetFocus
CharLowerA
OemToCharA
CreateMenu
GetMenuItemID
CheckMenuItem
GetClassLongA
MsgWaitForMultipleObjects
DeleteMenu
SystemParametersInfoA
SetForegroundWindow
DestroyMenu
LoadStringA
TrackPopupMenu
RemovePropA
UnhookWindowsHookEx
RemoveMenu
GetKeyState
GetClientRect
RegisterClassA
GetWindowPlacement
SetMenuItemInfoA
GetDesktopWindow
PeekMessageW
LoadKeyboardLayoutA
GetMenuStringA
GetKeyNameTextA
DrawTextA
WaitMessage
ShowOwnedPopups
SetWindowLongA
GetPropA
TranslateMessage
GetMenuItemCount
EqualRect
GetWindowLongA
SetPropA
GetWindowRect
ChildWindowFromPoint
MessageBeep
FillRect
IsWindowVisible
GetSubMenu
GetMenu
DrawIconEx
DrawEdge
ScreenToClient
MapWindowPoints
RegisterClipboardFormatA
IsZoomed
GetSysColorBrush
GetMenuState
CreatePopupMenu
BeginPaint
PostMessageA

Sections

.text
Size: 78KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 5.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

text
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae689b3a4100531aee3e80b3e92b567a

Headers

File Characteristics

Imports

comctl32

kernel32

comdlg32

ole32

oleaut32

user32

Sections

.text Size: 78KB - Virtual size: 80KB

.data Size: 11KB - Virtual size: 5.0MB

text Size: 1024B - Virtual size: 4KB

.idata Size: 1.6MB - Virtual size: 1.6MB

.adata Size: 4KB - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

DATA Size: 512B - Virtual size: 4KB

.rsrc Size: 19KB - Virtual size: 20KB

.text
Size: 78KB - Virtual size: 80KB

.data
Size: 11KB - Virtual size: 5.0MB

text
Size: 1024B - Virtual size: 4KB

.idata
Size: 1.6MB - Virtual size: 1.6MB

.adata
Size: 4KB - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

DATA
Size: 512B - Virtual size: 4KB

.rsrc
Size: 19KB - Virtual size: 20KB