74934ba936ede3b49003ef27e7da6696_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

74934ba936ede3b49003ef27e7da6696_JaffaCakes118
Size

566KB
MD5

74934ba936ede3b49003ef27e7da6696
SHA1

b64ce0d79339e968be06d3ee01742e094bb353dc
SHA256

1e967b8ccd79a5cfadd3fe35641583822f1634ebf534d3e429ccedbaba2fa8d7
SHA512

0ebffcd4c0023515ebcdd5493952f0a6176c81708a3a72717d42298f3a15e035c2e752b2a3b6adc2e72e72dd8324f57dde9dc16236870bef7c8ebe0285cd7cb1
SSDEEP

12288:kbhULRMw1B667NjABdyd1WQIl3afFmTIPLxyMfoqiny072lRNx3:6ULRMw1067JADydESFSIjQMfCClt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74934ba936ede3b49003ef27e7da6696_JaffaCakes118

Files

74934ba936ede3b49003ef27e7da6696_JaffaCakes118
.exe windows:4 windows x86 arch:x86

05750339303cf87a4f59418c100fe3ee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\eo

Imports

user32

GetPropW
IsDialogMessageW
BeginPaint
IsCharUpperA
DialogBoxParamA
DefFrameProcA
GetClassWord
ShowWindowAsync
DragObject
PackDDElParam
TranslateAccelerator
UnhookWindowsHookEx
CharPrevW
SetScrollRange
CopyIcon
GetWindowTextLengthW
GetUserObjectSecurity
CreateDialogIndirectParamW
LoadImageA
ScrollDC
GetClientRect
MessageBoxW
DefFrameProcW
RemovePropW
SetShellWindow
DdePostAdvise
DestroyCaret
SetSysColors
CharNextW
DefWindowProcA
GetClassInfoA
MsgWaitForMultipleObjectsEx
GetIconInfo
MenuItemFromPoint
RegisterClassA
ClipCursor
ModifyMenuW
InsertMenuItemW
EndDialog
GetKBCodePage
GetForegroundWindow
CreateWindowExW
CharNextExA
UnregisterHotKey
DrawIcon
OemToCharA
GetDlgItemTextA
GetTitleBarInfo
wvsprintfW
RegisterClassExA
ShowWindow
CreateIconFromResource
GetMenuCheckMarkDimensions
SendInput
GetDesktopWindow
LoadMenuIndirectA
DestroyWindow
LockWindowUpdate
UnregisterClassW

kernel32

GetEnvironmentStrings
HeapFree
SetEnvironmentVariableA
GetCommandLineW
SetStdHandle
LeaveCriticalSection
TlsGetValue
GetModuleFileNameA
VirtualAlloc
EnterCriticalSection
GetProcAddress
GetStdHandle
WideCharToMultiByte
CompareStringA
GetSystemTimeAsFileTime
WriteFile
SetHandleCount
HeapReAlloc
GetModuleHandleA
GetUserDefaultLCID
FlushFileBuffers
FindNextChangeNotification
QueryPerformanceCounter
GetOEMCP
OpenMutexA
VirtualQuery
InterlockedExchange
GetStringTypeA
GetStartupInfoW
IsValidLocale
FreeEnvironmentStringsA
VirtualFree
CloseHandle
CompareStringW
UnhandledExceptionFilter
GetCommandLineA
GetLastError
CreateMutexA
GetStringTypeW
GetCurrentProcessId
HeapSize
IsBadWritePtr
GetModuleFileNameW
GetCurrentThread
VirtualProtect
HeapDestroy
GetVersionExA
ExitProcess
EnumSystemLocalesA
GetCurrentProcess
GetDateFormatA
GetTickCount
GetStartupInfoA
HeapCreate
GetFileType
SetLastError
InitializeCriticalSection
GetCPInfo
LCMapStringA
DeleteCriticalSection
TerminateProcess
HeapAlloc
RtlUnwind
MultiByteToWideChar
LCMapStringW
IsValidCodePage
GetLocaleInfoA
GetTimeFormatA
FreeEnvironmentStringsW
TlsSetValue
GetTimeZoneInformation
GetLocaleInfoW
GetSystemInfo
ReadFile
GetCurrentThreadId
TlsFree
GetEnvironmentStringsW
TlsAlloc
GetACP
LoadLibraryA
SetFilePointer

comctl32

CreateMappedBitmap
ImageList_Write
_TrackMouseEvent
CreateStatusWindowW
ImageList_EndDrag
ImageList_GetImageCount
ImageList_DragShowNolock
ImageList_AddMasked
InitCommonControlsEx
DrawInsert
ImageList_LoadImage
ImageList_SetFilter
ImageList_Add

comdlg32

GetOpenFileNameA
PrintDlgA
ChooseFontW
GetFileTitleA

Sections

.text
Size: 185KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

05750339303cf87a4f59418c100fe3ee

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

comctl32

comdlg32

Sections

.text Size: 185KB - Virtual size: 184KB

.rdata Size: 260KB - Virtual size: 260KB

.data Size: 105KB - Virtual size: 121KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 185KB - Virtual size: 184KB

.rdata
Size: 260KB - Virtual size: 260KB

.data
Size: 105KB - Virtual size: 121KB

.rsrc
Size: 14KB - Virtual size: 13KB