72214efc12aaafe56616f992fe492a6b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

72214efc12aaafe56616f992fe492a6b_JaffaCakes118
Size

197KB
MD5

72214efc12aaafe56616f992fe492a6b
SHA1

94783087987d959e43c6d9b8be61d5d51f262569
SHA256

f9a41b8277e027c9b9a90e1e8bfbf884e68705e74f43cf325d0f5e7e6414a65d
SHA512

afe2472a9e444660b1e54264f4a5f4bc9c51c6dbcb4c1416c3ad005f8738e28768131f629cc962d5086f168706ad5865931200b99f00f7c21e42c8ecc03e5ac4
SSDEEP

3072:lWclc3cX3l/fiFWk2N5dgCp1nadRXiMDjba5sBjmmcOAllz1nHdVbIfjarypZ:Dlc3SwFWkIRadMaOsByN/5auGp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
72214efc12aaafe56616f992fe492a6b_JaffaCakes118

Files

72214efc12aaafe56616f992fe492a6b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e1b22b52567b4b5aa9d331ed7e72a3d5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

AnimatePalette
SetStretchBltMode
GetPath
CreateFontIndirectA
PlgBlt
PolyBezier
FlattenPath
SetTextColor
CreatePen
StrokePath
GetBkColor
RoundRect
ExtCreatePen
GetBitmapBits
SetDIBits

rpcrt4

NdrClientCall
RpcStringBindingComposeA
RpcBindingFromStringBindingA
RpcBindingSetAuthInfoA
RpcStringFreeA

user32

DestroyIcon
DestroyCursor
GetSysColorBrush
ToAscii
WinHelpW
SetScrollRange
CallNextHookEx
SetWindowsHookExW
ClipCursor
UnhookWindowsHookEx
ChildWindowFromPoint
DefWindowProcW
IsClipboardFormatAvailable
SetWindowPos
DrawEdge
EmptyClipboard
SetClipboardData
RegisterClassW
MonitorFromWindow
GetSysColor

comdlg32

GetFileTitleA

kernel32

CreateFiber
UnlockFile
IsDBCSLeadByte
GetVersionExW
LockFile
FileTimeToLocalFileTime
GetUserDefaultLangID
SetCommConfig
GetSystemTime
FlushFileBuffers
GetVolumeInformationW
EnumResourceNamesW
GetFileAttributesA
SetEndOfFile
SearchPathW
FlushFileBuffers
CompareStringW
GetFileType
VerLanguageNameW
LocalAlloc
FileTimeToSystemTime
FindResourceExA
GetFileTime
GetProfileStringW
GetSystemDirectoryW

shlwapi

PathStripToRootW
PathIsRelativeW
PathIsURLW
PathCanonicalizeW
PathIsRootW
PathCombineW

comctl32

ImageList_Add
ImageList_Create
ImageList_GetIconSize
ImageList_DrawEx
ImageList_Destroy

ole32

CLSIDFromString
CoCreateInstance
CoTaskMemFree
CoGetMalloc
OleDuplicateData
OleGetAutoConvert
OleRegGetUserType
StgCreateDocfileOnILockBytes
CoGetClassObject
GetHGlobalFromILockBytes
CreateStreamOnHGlobal
CoTaskMemAlloc
StgOpenStorageOnILockBytes
ReleaseStgMedium
ProgIDFromCLSID
OleRun
CoFreeUnusedLibraries
CoCreateGuid
CLSIDFromProgID
StringFromCLSID
GetHGlobalFromStream
RegisterDragDrop
RevokeDragDrop
CreateILockBytesOnHGlobal

Sections

.text
Size: 170KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e1b22b52567b4b5aa9d331ed7e72a3d5

Headers

File Characteristics

Imports

gdi32

rpcrt4

user32

comdlg32

kernel32

shlwapi

comctl32

ole32

Sections

.text Size: 170KB - Virtual size: 169KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 23KB - Virtual size: 22KB

.lib Size: 512B - Virtual size: 228KB

.text
Size: 170KB - Virtual size: 169KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 23KB - Virtual size: 22KB

.lib
Size: 512B - Virtual size: 228KB