7164b0c46261967e60848dae73ad3dd6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7164b0c46261967e60848dae73ad3dd6_JaffaCakes118
Size

205KB
MD5

7164b0c46261967e60848dae73ad3dd6
SHA1

8da42de16800d026aa6a9d51e9e66ede94b65fd9
SHA256

8ebb8dd04e316e2e97325c6cba51a05a3d0f232c0a6411686af3e9096c34e1b9
SHA512

3140416384fed1f690071694ea5daa42f3d07f328569e9ea09a192c26371b152a9d6a4f09c217ddbfd69f17f8bc3e1bfd336075f627fb8693bbad09f15ef3726
SSDEEP

6144:Agb+1rXmgvk65I2t7KwGoDPslZVlWRiZx9Mh0:AgCEWQ2th6fltxt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7164b0c46261967e60848dae73ad3dd6_JaffaCakes118

Files

7164b0c46261967e60848dae73ad3dd6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd755fa9fb78277d1a067bc07d1a7ec7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleUninitialize
OleIsCurrentClipboard
CoRegisterMessageFilter
CoTaskMemFree
CoRetireServer
StgOpenStorageOnILockBytes
OleFlushClipboard
CoInitialize
CreateILockBytesOnHGlobal
CoTaskMemAlloc
CoCreateInstance
CoGetClassObject
OleInitialize
CoUninitialize
CLSIDFromProgID
CoRevokeClassObject
StgCreateDocfileOnILockBytes
CoFreeUnusedLibraries
CLSIDFromString

shlwapi

PathRemoveFileSpecA
PathAppendA

user32

MonitorFromPoint
EnumDisplayMonitors
LoadCursorA
GetWindowRect
CreateWindowExA
RegisterClassA
WindowFromDC
CharNextW
GetDC
GetMonitorInfoA
DestroyWindow
LoadIconA
DefWindowProcA
MonitorFromWindow
ReleaseDC
GetDesktopWindow
SetActiveWindow
ScrollWindowEx
GetClientRect
SetWindowPos
GetActiveWindow
OffsetRect
GetSystemMetrics
UnregisterClassA

advapi32

RegCloseKey
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA

gdi32

EndDoc
PatBlt
CombineRgn
GetDeviceCaps
GetRgnBox
SetGraphicsMode
EndPage
Escape
StrokePath
PolylineTo
SetDIBits
GetGraphicsMode
SetROP2
FillPath
GetDIBColorTable
SetBrushOrgEx
CreateRectRgn
EqualRgn
CreateBrushIndirect
RestoreDC
CreateCompatibleBitmap
CloseFigure
CreateDIBSection
StartDocW
CreatePalette
StartPage
MoveToEx
CreatePolyPolygonRgn
DeleteDC
StretchDIBits
BeginPath
GetViewportOrgEx
StretchBlt
IntersectClipRect
SetMiterLimit
SetStretchBltMode
ExtCreatePen
CreatePatternBrush
BitBlt
EndPath
GetStockObject
CreateICW
CreateBitmap
RealizePalette
SetPolyFillMode
PolyBezierTo
GetClipBox
CreateCompatibleDC
CreateDCW
SaveDC
SelectObject
SetWorldTransform
GetRegionData
GetWorldTransform
SelectClipRgn
SelectPalette
Rectangle
ResetDCW
LineTo
OffsetRgn
GetObjectA
ExtSelectClipRgn
DeleteObject
SelectClipPath
GetCurrentObject
ExtEscape
AbortDoc
ModifyWorldTransform
PolyDraw

msimg32

AlphaBlend

kernel32

GetCurrentThread
SetUnhandledExceptionFilter
CloseHandle
lstrcmpW
GetCurrentProcess
GetCurrentDirectoryA
GetLocaleInfoA
CreateSemaphoreA
GetSystemInfo
GetModuleHandleA
GlobalUnlock
GetCalendarInfoW
ReleaseMutex
LoadLibraryA
GetProfileStringW
SetThreadPriority
WaitForSingleObject
GetUserDefaultLangID
SetCurrentDirectoryA
ReleaseSemaphore
GetTimeFormatA
GetLastError
LocalAlloc
InterlockedIncrement
GetSystemDefaultLCID
GetSystemDirectoryA
CreateFileA
GlobalSize
GetThreadPriority
GetSystemTimeAsFileTime
GetFileSize
FindNextFileA
GlobalAlloc
TlsSetValue
GetCurrentThreadId
EnumResourceNamesA
TlsGetValue
GetEnvironmentVariableW
GetDateFormatA
UnhandledExceptionFilter
GetCurrentProcessId
InterlockedExchange
Sleep
GetThreadLocale
InterlockedCompareExchange
QueryPerformanceCounter
TlsFree
FindClose
GetVersionExA
ReadFile
GlobalLock
InitializeCriticalSection
GetProcAddress
FindFirstFileA
GlobalFree
IsProcessorFeaturePresent
ExitProcess
TerminateProcess
GetLocalTime
WideCharToMultiByte
EnterCriticalSection
GetDateFormatW
GetFileTime
IsDebuggerPresent
DeleteCriticalSection
GetACP
lstrlenW
GetTempPathW
GetModuleFileNameA
GetWindowsDirectoryA
DeleteFileW
LeaveCriticalSection
FreeLibrary
MultiByteToWideChar
GetTickCount
GetTimeFormatW
CreateMutexA
RaiseException

Sections

.text
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bd755fa9fb78277d1a067bc07d1a7ec7

Headers

File Characteristics

Imports

ole32

shlwapi

user32

advapi32

gdi32

msimg32

kernel32

Sections

.text Size: 115KB - Virtual size: 115KB

.rdata Size: 5KB - Virtual size: 5KB

.bss Size: 82KB - Virtual size: 82KB

.edata Size: 1024B - Virtual size: 212KB

.text
Size: 115KB - Virtual size: 115KB

.rdata
Size: 5KB - Virtual size: 5KB

.bss
Size: 82KB - Virtual size: 82KB

.edata
Size: 1024B - Virtual size: 212KB