762bd7ebee872c61efdfa03c55f7f8dc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

762bd7ebee872c61efdfa03c55f7f8dc_JaffaCakes118
Size

740KB
MD5

762bd7ebee872c61efdfa03c55f7f8dc
SHA1

6a799a241b44cdf0c5efd1cb69e26c1a1e56423b
SHA256

4fe50b28e40661babf0bbd0d42cb9ed19c74c57b25343c4816c9b6dda2f40d27
SHA512

6faa23fdabf88683801667e591c7449e70b6016da1cd0b6e08aea5330e3835d54b19869587264c96f65c6eaa8610d27f857bdf1bc9775e66a09a90efe1d67ac7
SSDEEP

12288:9gyCnquxmzr605vI7OIXMcIRbbylLfH8mmpG7lEmS8R:9gbnqNz217OIXM9yhkmcJ8R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
762bd7ebee872c61efdfa03c55f7f8dc_JaffaCakes118

Files

762bd7ebee872c61efdfa03c55f7f8dc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

57a3ac69b61615baf091402be57e4923

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\lcema.pdb

Imports

ole32

CoTaskMemFree
GetHGlobalFromILockBytes
CoTreatAsClass
WriteFmtUserTypeStg
ReadFmtUserTypeStg
OleIsRunning
CoTaskMemAlloc
SetConvertStg
ReadClassStg

user32

IsDialogMessageA
TranslateAcceleratorA
LoadStringA
SetWindowsHookExA
DeleteMenu
RegisterClassExA
InvalidateRect
GetDlgItem
RegisterClassA
GetDC
IsWindow
PostThreadMessageA
WindowFromPoint
GetWindowTextA
GetScrollInfo
GetForegroundWindow
OpenClipboard
EmptyClipboard
SetMenuDefaultItem
CreateWindowExA
SetParent
LoadCursorA
IsWindowEnabled
GetDlgCtrlID
DefWindowProcA
IsRectEmpty
ReleaseDC
GetNextDlgGroupItem
WindowFromDC
GetPropA
IsDlgButtonChecked
ShowWindow
LoadAcceleratorsA
CreateDialogIndirectParamA
SendDlgItemMessageA
SetScrollRange
GetSysColorBrush
SetWindowPos
CreateCaret
DestroyWindow
GetParent
LoadBitmapA
SetPropA
GetNextDlgTabItem
MapWindowPoints
GetClientRect
TrackPopupMenuEx
SetScrollPos
OffsetRect
GetCursorPos
SetCapture
MessageBoxA

version

VerLanguageNameA
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

kernel32

IsDebuggerPresent
InterlockedExchange
GetTimeFormatA
GetSystemTimeAsFileTime
GetDateFormatA
GetCPInfo
GetConsoleMode
GetACP
Sleep
TerminateProcess
SetUnhandledExceptionFilter
SetLastError
CompareStringA
HeapSize
SetFilePointer
LCMapStringW
GetModuleHandleW
VirtualFree
GetModuleFileNameA
FlushFileBuffers
HeapCreate
GetProcAddress
VirtualQuery
GetLastError
LCMapStringA
InitializeCriticalSectionAndSpinCount
QueryPerformanceCounter
GetLocaleInfoA
EnterCriticalSection
GetEnvironmentStringsW
RaiseException
TlsFree
GetEnvironmentStrings
GetCommandLineA
GetStartupInfoA
ExitProcess
LeaveCriticalSection
CompareStringW
IsValidCodePage
CreateMutexA
CloseHandle
UnhandledExceptionFilter
TlsAlloc
GetStdHandle
GetCurrentThreadId
TlsGetValue
SetStdHandle
GetConsoleOutputCP
SetHandleCount
GetStringTypeA
FreeEnvironmentStringsA
LoadLibraryA
ReadFile
GetTickCount
WideCharToMultiByte
GetModuleHandleA
GetConsoleCP
SetEnvironmentVariableA
HeapFree
MultiByteToWideChar
WriteConsoleA
GetCurrentProcess
CreateFileA
FreeEnvironmentStringsW
GetCurrentProcessId
GetTimeZoneInformation
WriteConsoleW
GetOEMCP
InterlockedIncrement
HeapReAlloc
GetFileType
WriteFile
RtlUnwind
DeleteCriticalSection
HeapAlloc
TlsSetValue
InterlockedDecrement
VirtualAlloc
GetStringTypeW

gdi32

Ellipse
SetTextColor
SetPaletteEntries
GetObjectA
SetBkColor
RealizePalette
FillRgn
GetClipRgn
SetPixelV
AbortDoc
ExtFloodFill
StretchDIBits
GetTextAlign
GetTextMetricsA
SetTextAlign
GetTextFaceA
SetROP2
PatBlt
CreateRectRgnIndirect
GetPaletteEntries
GetDeviceCaps
ScaleWindowExtEx
CreateDCA
GetStockObject
SetBrushOrgEx
CreatePen
GetDIBits
ExcludeClipRect
DeleteObject
FrameRgn
SetMapMode
RectVisible
GetDCOrgEx
Polygon
SetBkMode
StretchBlt
SelectObject
GetPixel
DeleteDC
MoveToEx
CreateCompatibleBitmap
PtVisible
BitBlt
GetSystemPaletteEntries
GetCharWidthA
ExtSelectClipRgn
CopyMetaFileA
CreateSolidBrush
CreatePatternBrush
CreateFontIndirectA
ScaleViewportExtEx
SetViewportOrgEx
GetTextExtentPoint32A

comctl32

InitCommonControlsEx
ImageList_GetImageCount
ImageList_Draw

advapi32

CloseServiceHandle
OpenProcessToken
RegOpenKeyExA
RegCloseKey
InitializeSecurityDescriptor
RegDeleteValueA
GetSidIdentifierAuthority
AllocateAndInitializeSid
RegCreateKeyExA

Sections

.text
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 472KB - Virtual size: 471KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

57a3ac69b61615baf091402be57e4923

Headers

File Characteristics

PDB Paths

Imports

ole32

user32

version

kernel32

gdi32

comctl32

advapi32

Sections

.text Size: 112KB - Virtual size: 109KB

.rdata Size: 472KB - Virtual size: 471KB

.data Size: 116KB - Virtual size: 130KB

.rsrc Size: 36KB - Virtual size: 32KB

.text
Size: 112KB - Virtual size: 109KB

.rdata
Size: 472KB - Virtual size: 471KB

.data
Size: 116KB - Virtual size: 130KB

.rsrc
Size: 36KB - Virtual size: 32KB