7617a21ee3a047251df4d4dfd7063a16_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7617a21ee3a047251df4d4dfd7063a16_JaffaCakes118
Size

636KB
MD5

7617a21ee3a047251df4d4dfd7063a16
SHA1

cd535c1e4767161e1491ae6a268dd425f49ee361
SHA256

224e3e5cd0eaf5d4369664a32428d0d2d6ae9a783e312f2051888fb8f08f8f7c
SHA512

38def7532e8ad437d539857a2c550d76aebbba69ea7a788b2003a38bdd3e258d9f73757dc4d9f0b635e22a76150812778a1a963df6d71be84e522fb4b93593eb
SSDEEP

12288:qo8OdAGQkLFvlFkCCGZzmTfh/eif02++unAn7AD+yOZc7m7Ssh:qoVdAGfFvlFkJJTfh/i2+3f+yOZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7617a21ee3a047251df4d4dfd7063a16_JaffaCakes118

Files

7617a21ee3a047251df4d4dfd7063a16_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b71d9a94e92be868a48658c101548a6b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\yfck

Imports

kernel32

SetLastError
GetCommandLineA
ReadConsoleOutputAttribute
EnterCriticalSection
GetThreadLocale
TlsSetValue
CompareStringW
LoadLibraryA
RtlUnwind
GetCompressedFileSizeA
VirtualAlloc
ReadFile
TlsGetValue
InterlockedExchange
SetFilePointer
ResumeThread
GetCurrentThreadId
InterlockedIncrement
InitializeCriticalSection
InterlockedDecrement
CreateFileMappingW
DeleteFiber
SetHandleCount
GetStringTypeW
SystemTimeToFileTime
GetTickCount
GetCurrentThread
GetModuleFileNameA
SetStdHandle
CloseHandle
WriteFile
lstrcpynA
ConvertDefaultLocale
QueryPerformanceCounter
GetCurrentProcess
OpenFileMappingW
lstrlen
GetTimeZoneInformation
WritePrivateProfileStringW
OpenMutexA
GetSystemTimeAsFileTime
GetCurrentProcessId
MultiByteToWideChar
GetModuleHandleA
HeapCreate
WriteConsoleOutputCharacterA
SetEnvironmentVariableA
DeleteCriticalSection
WritePrivateProfileStructW
GetStringTypeA
FreeLibrary
IsBadWritePtr
LeaveCriticalSection
GetSystemDefaultLCID
GlobalGetAtomNameA
CreateThread
LCMapStringW
GetSystemTime
GetCompressedFileSizeW
GetACP
VirtualQuery
VirtualFree
CreateMutexA
GetLocalTime
LockFileEx
UnhandledExceptionFilter
TerminateProcess
GetCPInfo
HeapAlloc
LCMapStringA
GetFullPathNameW
ReadConsoleA
HeapFree
GetProcAddress
GlobalSize
TlsAlloc
GetEnvironmentStringsW
GetStdHandle
WideCharToMultiByte
GetFileType
GetStartupInfoA
TlsFree
GetVersion
FreeEnvironmentStringsA
GetLastError
FlushFileBuffers
GetEnvironmentStrings
FreeEnvironmentStringsW
CompareStringA
HeapReAlloc
HeapDestroy
GetThreadSelectorEntry
GetOEMCP
ExitProcess
RaiseException

shell32

SHInvokePrinterCommandA
SHBrowseForFolder
ShellExecuteW
SHEmptyRecycleBinA

comctl32

ImageList_DrawEx
ImageList_GetIconSize
CreateStatusWindowW
InitCommonControlsEx

comdlg32

PageSetupDlgA

user32

TabbedTextOutA
InsertMenuItemA
OpenDesktopW
EnumDesktopsW
MessageBoxA
SetScrollRange
ReuseDDElParam
GetKeyboardLayout
wvsprintfW
MapVirtualKeyExA
BringWindowToTop
GetWindowContextHelpId
IsDlgButtonChecked
DdeReconnect
ShowScrollBar
RegisterClipboardFormatW
ChangeMenuW
DrawTextExA
GetScrollBarInfo
RegisterClassA
UnpackDDElParam
GetFocus
LockWindowUpdate
RemovePropW
ScrollDC
SystemParametersInfoA
DefWindowProcA
RegisterClassExA
CreateWindowExA
GetDialogBaseUnits
SetMenuInfo
DestroyWindow
ShowWindow

advapi32

InitiateSystemShutdownW
ReportEventA
RegSetValueA
RegEnumKeyExW
CreateServiceW

Sections

.text
Size: 168KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b71d9a94e92be868a48658c101548a6b

Headers

File Characteristics

PDB Paths

Imports

kernel32

shell32

comctl32

comdlg32

user32

advapi32

Sections

.text Size: 168KB - Virtual size: 165KB

.rdata Size: 264KB - Virtual size: 260KB

.data Size: 108KB - Virtual size: 131KB

.rsrc Size: 92KB - Virtual size: 88KB

.text
Size: 168KB - Virtual size: 165KB

.rdata
Size: 264KB - Virtual size: 260KB

.data
Size: 108KB - Virtual size: 131KB

.rsrc
Size: 92KB - Virtual size: 88KB