7901cd6ea2a3e3cd0ec7184fc3a9f523_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7901cd6ea2a3e3cd0ec7184fc3a9f523_JaffaCakes118
Size

252KB
MD5

7901cd6ea2a3e3cd0ec7184fc3a9f523
SHA1

fe1544b2224baad45d99c2d583ced374606432f0
SHA256

ec85d7c0f9065d1ac0363423e536718f9596748668cdbacd5d74ab6e343d3c9e
SHA512

4bc38c84044434611fc783e48e26b4f5879d934fc97be068c5e363a52ed36e7978030aaf787e5d0e6d88cfdaa63b7bd5c6df07a650d0e026498815933b865ff0
SSDEEP

6144:wC/Md2NqGQ+NmMrJ1EOxhK+5Sd+h9Q1hwawZ:tk0vQ+NhJV5SUQ1aaw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7901cd6ea2a3e3cd0ec7184fc3a9f523_JaffaCakes118

Files

7901cd6ea2a3e3cd0ec7184fc3a9f523_JaffaCakes118
.exe windows:4 windows x86 arch:x86

27ec24c061c3ca926ec556b795d3d8d8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFullPathNameA
GetFileAttributesA
lstrcpynW
lstrlenW
GetFileAttributesW
FreeLibrary
MultiByteToWideChar
GlobalAlloc
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentThreadId
GetCurrentProcessId
CreateEventW
GetLogicalDriveStringsW
GetVersion
InitializeCriticalSection
WaitForSingleObject
lstrlenA
GetModuleHandleW
LoadLibraryW
GetLastError
LocalFree
GetModuleFileNameW
LocalAlloc
SetUnhandledExceptionFilter
QueryPerformanceCounter
lstrcpynA
GetVersionExW
GetCurrentThread
GetCurrentProcess
GetTimeFormatW
GetDateFormatW
Sleep
SetEvent
GetVersionExA
GetThreadLocale
GetLocaleInfoA
WaitForMultipleObjects
GetACP
lstrcmpW
GetProcAddress
LoadLibraryA

user32

PostMessageW
EnableWindow
LoadImageW
IsWindow
CheckMenuItem
EnableMenuItem
GetSubMenu
LoadMenuW
LoadCursorW
SetCursor
LoadIconW
GetCursorPos
SendMessageW
DestroyIcon
InvalidateRect
GetSystemMetrics
SetForegroundWindow
RegisterWindowMessageW
SetWindowTextW
CharUpperW
MessageBoxW
AppendMenuA
TrackPopupMenu
WinHelpW
CreateDesktopA
EndMenu
DialogBoxParamA
GetForegroundWindow
WinHelpA
PeekMessageW
DialogBoxIndirectParamA
SendDlgItemMessageW
wvsprintfA
MonitorFromRect
MessageBoxIndirectA
GetCapture
GetDCEx

gdi32

CreateCompatibleDC
CreateSolidBrush
DeleteObject
AddFontResourceA
SetWinMetaFileBits
ExtCreateRegion
CreatePolyPolygonRgn
CreatePatternBrush
CreateFontIndirectW
RemoveFontResourceA
CreateBitmap
GetTextExtentPointW

advapi32

EqualSid
GetTokenInformation
OpenProcessToken
OpenThreadToken
RegDeleteKeyW
RegDeleteKeyA
FreeSid
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegQueryValueExW
RegSetValueExW
RegEnumKeyW
RegDeleteValueW
RegQueryInfoKeyW
RegEnumValueW
RegEnumKeyExW
LookupAccountSidW
AllocateAndInitializeSid

shell32

SHGetDesktopFolder
SHGetSpecialFolderLocation
ExtractIconExW

oleaut32

SystemTimeToVariantTime
VariantTimeToSystemTime

netapi32

NetReplGetInfo
NetUseGetInfo

Sections

.icode
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

CODE
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Gxrxi
Size: 105KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.muIJdp
Size: 108KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27ec24c061c3ca926ec556b795d3d8d8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

oleaut32

netapi32

Sections

.icode Size: 8KB - Virtual size: 8KB

CODE Size: 11KB - Virtual size: 12KB

.rdata Size: 3KB - Virtual size: 16KB

.Gxrxi Size: 105KB - Virtual size: 141KB

.data Size: 5KB - Virtual size: 362KB

.muIJdp Size: 108KB - Virtual size: 176KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 1KB - Virtual size: 4KB

.icode
Size: 8KB - Virtual size: 8KB

CODE
Size: 11KB - Virtual size: 12KB

.rdata
Size: 3KB - Virtual size: 16KB

.Gxrxi
Size: 105KB - Virtual size: 141KB

.data
Size: 5KB - Virtual size: 362KB

.muIJdp
Size: 108KB - Virtual size: 176KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 1KB - Virtual size: 4KB