6fdf519f3065e7ea71d1985997b814e9_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

6fdf519f3065e7ea71d1985997b814e9_JaffaCakes118
Size

344KB
MD5

6fdf519f3065e7ea71d1985997b814e9
SHA1

e146a5f80e05596ada0182564a81b45e6e1cb28b
SHA256

997da15454974528f5758c4782ba8af88259f549d6aa5012006e0f25b5091527
SHA512

0914116f5473d4a955fb597f6e763c035547d1d48367d2bed6c1933c4188ce7b05811015a7acf6e7b97cbcddb1f3f1d086939758a92fdaa4c5fc3ffcb83501b5
SSDEEP

6144:JHTDEOLb01kWu7L3Tf1W4ZivV8OuTukX4bpwJPv0mA6vAbkreBH7a3rnrpyHtMc7:NTDNM1dWL3Tf1zMv1EukIlmsm9Abhh7H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6fdf519f3065e7ea71d1985997b814e9_JaffaCakes118

Files

6fdf519f3065e7ea71d1985997b814e9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6521d83ae787f2c22990458eb33dc861

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameW
PageSetupDlgW
ChooseFontW

gdi32

SetViewportExtEx
CreateCompatibleBitmap
StartPage
ExtEscape
GdiPlayScript
SetDeviceGammaRamp
LPtoDP
GetWindowOrgEx
CreateDIBitmap
SetICMProfileA
RemoveFontResourceA
GetCharacterPlacementA

advapi32

RegEnumKeyW
RegConnectRegistryA
LookupPrivilegeNameA
RegSetValueExA
RegCreateKeyExW
CryptSetKeyParam
CryptSetProviderA
LookupPrivilegeDisplayNameW
LogonUserA
CryptSetHashParam
CryptVerifySignatureW
CryptEnumProvidersW
RegQueryInfoKeyA
LookupPrivilegeNameW
RegSetKeySecurity

comctl32

ImageList_Read
_TrackMouseEvent
CreateStatusWindowW
ImageList_GetBkColor
InitMUILanguage
ImageList_Merge
ImageList_SetOverlayImage
ImageList_DrawIndirect
CreateStatusWindowA
ImageList_SetDragCursorImage
CreatePropertySheetPageW
ImageList_Add
ImageList_ReplaceIcon
ImageList_GetIcon
InitCommonControlsEx
CreateToolbar
ImageList_AddMasked
ImageList_SetImageCount

kernel32

GetTimeZoneInformation
SetTimeZoneInformation
ReadFile
GetCurrentThread
LeaveCriticalSection
HeapCreate
GetCPInfo
MultiByteToWideChar
TerminateProcess
GetOEMCP
OpenMutexA
CompareStringA
GetFileType
SetHandleCount
GetLastError
SetEnvironmentVariableA
InitializeCriticalSection
GetStringTypeW
CreateMutexA
GetModuleFileNameA
GetEnvironmentStringsW
GetCurrentProcess
LoadLibraryA
CloseHandle
GetStringTypeA
VirtualFree
GetStartupInfoA
GetCurrentThreadId
TlsGetValue
FlushFileBuffers
UnhandledExceptionFilter
GetTickCount
SetVolumeLabelW
LCMapStringW
LCMapStringA
GetProcAddress
GetStdHandle
FileTimeToLocalFileTime
HeapReAlloc
SetLastError
DuplicateHandle
WriteFile
VirtualAlloc
GetVersion
InterlockedDecrement
QueryPerformanceCounter
FreeEnvironmentStringsA
WideCharToMultiByte
GetLocalTime
VirtualQuery
ResetEvent
CopyFileA
SetStdHandle
GetACP
GetCurrentProcessId
CompareStringW
SetFilePointer
ExitProcess
TlsSetValue
HeapFree
InterlockedIncrement
GetCommandLineA
GetEnvironmentStrings
DeleteCriticalSection
GetSystemTime
IsBadWritePtr
GetModuleHandleA
GetSystemTimeAsFileTime
HeapAlloc
TlsFree
TlsAlloc
FreeEnvironmentStringsW
EnterCriticalSection
ReadConsoleOutputCharacterW
InterlockedExchange
HeapDestroy
RtlUnwind

shell32

ShellExecuteExW
DragAcceptFiles

user32

GetClipboardSequenceNumber
CallMsgFilter
SetClassWord
DragDetect
DdeQueryNextServer
GetUserObjectInformationW
MessageBoxW
OpenInputDesktop
GetIconInfo
SetScrollPos
ShowWindow
CountClipboardFormats
RegisterClassExA
SetDebugErrorLevel
ScrollWindow
EditWndProc
GetDesktopWindow
DefWindowProcA
PostThreadMessageA
DefFrameProcA
IsCharUpperW
CheckMenuItem
GetMenuItemInfoW
GetUpdateRect
AppendMenuW
DrawCaption
IsWindowVisible
OffsetRect
PostQuitMessage
GetKeyboardType
CreateMDIWindowA
GetForegroundWindow
SetCursor
CreateDialogIndirectParamW
GetParent
CloseWindowStation
MenuItemFromPoint
GetMonitorInfoW
InsertMenuItemW
UnregisterHotKey
LoadMenuIndirectA
BringWindowToTop
SendNotifyMessageA
SetProcessDefaultLayout
DdeCreateDataHandle
EnumDisplaySettingsExA
SetWindowRgn
GetWindowTextA
DestroyWindow
DdeGetLastError
TranslateAcceleratorA
GetClassLongA
DialogBoxParamA
CreateWindowExA
CreateDesktopA
RemovePropA
RegisterClassA
SystemParametersInfoA
DdePostAdvise
DrawTextExW
DialogBoxIndirectParamA
GetMenuItemID
ClipCursor
CharLowerBuffW
InvalidateRgn
LoadKeyboardLayoutW
GetSubMenu
CreateAcceleratorTableW
ExitWindowsEx
UnhookWindowsHookEx
TabbedTextOutW
PeekMessageA
LoadCursorFromFileW

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6521d83ae787f2c22990458eb33dc861

Headers

File Characteristics

Imports

comdlg32

gdi32

advapi32

comctl32

kernel32

shell32

user32

Sections

.text Size: 124KB - Virtual size: 123KB

.rdata Size: 68KB - Virtual size: 66KB

.data Size: 92KB - Virtual size: 104KB

.rsrc Size: 56KB - Virtual size: 55KB

.text
Size: 124KB - Virtual size: 123KB

.rdata
Size: 68KB - Virtual size: 66KB

.data
Size: 92KB - Virtual size: 104KB

.rsrc
Size: 56KB - Virtual size: 55KB