83dd6ef015a91b1f51274a8dce2c7838_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

83dd6ef015a91b1f51274a8dce2c7838_JaffaCakes118
Size

472KB
MD5

83dd6ef015a91b1f51274a8dce2c7838
SHA1

af82b722d9f236e13dc1e8696691834b4a9069c0
SHA256

1de669d6a83ee7dd612b18e7821fb3da1696fb5061a6ab0a962ae2c5bf0ffb39
SHA512

631b698960eb3e1d40d24092ed37c771529b126969999c1433af86618b67e024588a6745b4d12ab5a8b0a00a32086e13ab7ec71742e93c3312c39000093e0590
SSDEEP

12288:F+c9MEA/RrO5HGEgmUiF73obouTdOzCHMky:cI7A/RrO8mUNboK1Mky

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83dd6ef015a91b1f51274a8dce2c7838_JaffaCakes118

Files

83dd6ef015a91b1f51274a8dce2c7838_JaffaCakes118
.exe windows:4 windows x86 arch:x86

16d0571a86050c6df0d094b389b862bd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DefWindowProcW
DdeGetData
DdeUninitialize
LoadIconW
DestroyWindow
CharUpperBuffA
RegisterClassExA
GetGuiResources
RegisterClipboardFormatA
SetDeskWallpaper
ShowWindow
GetActiveWindow
BlockInput
CreateWindowExA
DefWindowProcA
PtInRect
CloseClipboard
ScrollDC
DestroyIcon
SetMenuItemBitmaps
MessageBoxW
CreateDialogIndirectParamW
CharLowerW
GetCursorInfo
DdeInitializeA
GetWindowLongW
RegisterClassA
SetWindowContextHelpId
BroadcastSystemMessage
GetCaretBlinkTime
GetMonitorInfoA
CheckDlgButton
ReleaseCapture
OemToCharBuffA
OemKeyScan
GetClipboardSequenceNumber
GetOpenClipboardWindow
IsChild
GetWindowThreadProcessId
LoadMenuW
ChildWindowFromPoint
DdeSetUserHandle
DdeClientTransaction
GetMenuBarInfo
EnableWindow

comctl32

InitMUILanguage
ImageList_Duplicate
ImageList_SetIconSize
CreatePropertySheetPage
CreatePropertySheetPageW
ImageList_Add
DrawInsert
InitCommonControlsEx
ImageList_SetFilter
ImageList_Draw
ImageList_Replace
ImageList_SetFlags
CreatePropertySheetPageA
ImageList_Write
ImageList_SetImageCount
ImageList_AddMasked
ImageList_DragEnter
ImageList_GetBkColor
ImageList_DrawIndirect

kernel32

CreateMutexA
IsDebuggerPresent
GetConsoleTitleA
GetConsoleCP
GetCurrentThreadId
CloseHandle
GetSystemTimeAsFileTime
GetLocaleInfoA
EnumResourceTypesW
CompareStringW
HeapSize
ExpandEnvironmentStringsA
HeapAlloc
VirtualFree
EnterCriticalSection
SetLocaleInfoA
LoadLibraryA
SetConsoleCtrlHandler
CreateFileMappingA
GetConsoleOutputCP
FreeEnvironmentStringsW
TerminateProcess
IsValidLocale
SetEvent
GetCommandLineA
GetEnvironmentStrings
GetStringTypeW
GetUserDefaultLangID
SetHandleCount
DeleteCriticalSection
MoveFileExA
GetFileType
GetFullPathNameW
GetLogicalDriveStringsA
GetLastError
GetTickCount
GetStdHandle
SetFilePointer
GetAtomNameA
GetOEMCP
CompareStringA
GetCPInfo
UnhandledExceptionFilter
DeleteAtom
FlushConsoleInputBuffer
WriteConsoleA
GetLocaleInfoW
RtlUnwind
GetPrivateProfileSectionW
CreateNamedPipeA
RaiseException
SetStdHandle
OpenEventW
WriteConsoleOutputAttribute
GetSystemDirectoryW
GlobalDeleteAtom
GlobalLock
InterlockedExchange
lstrcatW
OpenSemaphoreW
WriteConsoleW
GetDateFormatA
GetUserDefaultLCID
GetEnvironmentVariableW
WriteProfileSectionA
GetTempFileNameW
GetPrivateProfileStringW
GetCurrentProcess
FlushFileBuffers
WritePrivateProfileStructW
VirtualQuery
ReadConsoleA
FileTimeToLocalFileTime
SetThreadAffinityMask
GetConsoleMode
EnumSystemLocalesA
HeapReAlloc
GetACP
GetTimeZoneInformation
SetEnvironmentVariableA
TlsFree
IsValidCodePage
TlsAlloc
GetStringTypeA
HeapCreate
GetModuleHandleW
MultiByteToWideChar
ReadFile
OpenMutexA
VirtualAlloc
RemoveDirectoryA
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentStringsW
CreateFileA
GetModuleHandleA
SetUnhandledExceptionFilter
GetDateFormatW
EnumCalendarInfoW
CopyFileA
HeapDestroy
TlsSetValue
GetCurrentProcessId
TlsGetValue
CompareFileTime
WideCharToMultiByte
GetSystemTime
InterlockedIncrement
Sleep
HeapValidate
GetProfileStringW
lstrcatA
GetTimeFormatA
VirtualLock
GlobalGetAtomNameW
VirtualFreeEx
InitializeCriticalSectionAndSpinCount
GetExitCodeProcess
GetProfileIntW
FreeLibrary
HeapFree
GetProcAddress
GetFileAttributesW
LeaveCriticalSection
GetFileTime
GlobalUnlock
GetVersionExW
WritePrivateProfileStringA
GetCurrentThread
WriteFile
ExitProcess
SetFileAttributesA
OpenMutexW
GetSystemDefaultLangID
InterlockedDecrement
SetThreadPriority
QueryPerformanceCounter
FreeEnvironmentStringsA
ReadConsoleOutputCharacterA
UnlockFile
LCMapStringA
LCMapStringW
FindClose
GetDiskFreeSpaceExA
SetLastError
GlobalFix

Sections

.text
Size: 172KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

16d0571a86050c6df0d094b389b862bd

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 172KB - Virtual size: 168KB

.rdata Size: 140KB - Virtual size: 139KB

.data Size: 100KB - Virtual size: 105KB

.rsrc Size: 56KB - Virtual size: 54KB

.text
Size: 172KB - Virtual size: 168KB

.rdata
Size: 140KB - Virtual size: 139KB

.data
Size: 100KB - Virtual size: 105KB

.rsrc
Size: 56KB - Virtual size: 54KB