6ef60ac5860f115a77dd2bcdb83ca3d9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6ef60ac5860f115a77dd2bcdb83ca3d9_JaffaCakes118
Size

496KB
MD5

6ef60ac5860f115a77dd2bcdb83ca3d9
SHA1

de58a42616a109048cc9e670391244e352ce31d9
SHA256

3de439ac7f6abf28e610973e24105a2070b470468458cf9bb629d44b9bc85367
SHA512

5e8a1a881c1a3756c178c0440c68786a495e327e90f7810d2e5c27134c04f624526fda06028d796d972daace6e60216cf6ec1595320f556d439ce8589c12a9aa
SSDEEP

6144:hlESIdhsllS82VDpyo3GDnTm95jGOu5mz7F7WCqD6T8YhVrIk7QAaSXhNGtaLibh:hlzldwDdu0jjBOD6T8kjMAaSKtJJR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6ef60ac5860f115a77dd2bcdb83ca3d9_JaffaCakes118

Files

6ef60ac5860f115a77dd2bcdb83ca3d9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ddbc737fd44f29c774603f3aa44b8d53

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ToAscii
SetMenuInfo
LoadImageW
SetCapture
CheckRadioButton
OffsetRect
GetKeyboardLayoutNameA
RegisterClassExA
DdeGetData
RegisterClassA
SendMessageTimeoutA
EnumDisplayDevicesA
DrawMenuBar
IsDialogMessageW
SetWindowsHookA
ChangeDisplaySettingsA
GetWindowTextLengthA

comctl32

InitCommonControlsEx

kernel32

TerminateProcess
LoadLibraryA
MultiByteToWideChar
GetCommandLineA
GetCurrentThread
LoadLibraryW
WideCharToMultiByte
GetShortPathNameA
CreateMutexA
QueryPerformanceCounter
IsBadWritePtr
GetCurrentProcess
InterlockedExchange
TlsSetValue
WaitForSingleObjectEx
SetStdHandle
GetSystemTimeAsFileTime
OpenMutexA
ConvertDefaultLocale
LeaveCriticalSection
GetCurrentProcessId
GetStringTypeW
WriteProfileSectionW
CloseHandle
CompareStringW
GetModuleFileNameA
VirtualFree
GetStringTypeA
FlushFileBuffers
CommConfigDialogA
InterlockedIncrement
HeapCreate
CompareStringA
TlsFree
GetVersion
UnhandledExceptionFilter
GetProcAddress
GetLastError
VirtualAlloc
SetFilePointer
GetTickCount
GetStdHandle
FreeEnvironmentStringsA
OpenMutexW
HeapDestroy
GetVolumeInformationA
GetLocalTime
GetTimeZoneInformation
WriteFile
HeapFree
ExitProcess
TlsGetValue
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
RtlUnwind
GetCurrentThreadId
WritePrivateProfileStringW
AllocConsole
ReadFile
SetHandleCount
GetACP
GetEnvironmentStrings
InterlockedDecrement
LCMapStringA
GetPrivateProfileStructA
GetSystemTime
GetUserDefaultLCID
EnumCalendarInfoExA
VirtualQuery
InitializeCriticalSection
HeapAlloc
GetCPInfo
GetStartupInfoA
TlsAlloc
SetEnvironmentVariableA
DeleteCriticalSection
ReadConsoleOutputA
EnterCriticalSection
LCMapStringW
HeapReAlloc
SetSystemTime
SetLastError
GetModuleHandleA
GetFileType

comdlg32

PrintDlgW
PageSetupDlgW

gdi32

GetCharWidth32W
DeleteDC
SelectObject
SetBoundsRect
PolyBezierTo
GetPath
EnumFontFamiliesExW
GetICMProfileA
GetBoundsRect
SetEnhMetaFileBits
CopyEnhMetaFileA
Polygon
GetSystemPaletteUse
CreateEnhMetaFileW
CreateColorSpaceA
BitBlt
RemoveFontResourceA
ChoosePixelFormat

advapi32

RegSetValueA
InitiateSystemShutdownA
CryptGetProvParam
CryptCreateHash
CryptVerifySignatureW

shell32

SHGetFileInfoA
SHQueryRecycleBinA

Sections

.text
Size: 169KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 314KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ddbc737fd44f29c774603f3aa44b8d53

Headers

File Characteristics

Imports

user32

comctl32

kernel32

comdlg32

gdi32

advapi32

shell32

Sections

.text Size: 169KB - Virtual size: 169KB

.rdata Size: 5KB - Virtual size: 20KB

.data Size: 314KB - Virtual size: 313KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 169KB - Virtual size: 169KB

.rdata
Size: 5KB - Virtual size: 20KB

.data
Size: 314KB - Virtual size: 313KB

.rsrc
Size: 7KB - Virtual size: 6KB