86dc7b8ceda61f9cd8f3eca45c7cefe1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

86dc7b8ceda61f9cd8f3eca45c7cefe1_JaffaCakes118
Size

367KB
MD5

86dc7b8ceda61f9cd8f3eca45c7cefe1
SHA1

1b258bdf8d32b465aecbb10505168a187a443fb3
SHA256

81443a0bb22600277fc4f5a02fe6fbb196a3531ba3a4bdfc6634be0fa8ca26d5
SHA512

754ff81f6d0640f6dbde43fdd72b8228c08cffd3fe5893b2bb058a920d6bf828389c9b4b2dad5ab812bc9299be579cb76739eea72e0b5a5157c15fc78dfcd4d3
SSDEEP

6144:7FFCNr0RYZWUXtjb8ev69OKGbNLQNdQFqjgntuo1RXy/8rPPNvemJZ8rUBxZUQvM:7LS0RYZWUh+9O9bNMvQgktuakOFvemJ7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86dc7b8ceda61f9cd8f3eca45c7cefe1_JaffaCakes118

Files

86dc7b8ceda61f9cd8f3eca45c7cefe1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

df718d8c09b625e28734fb8681280713

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

shell32

SHGetDesktopFolder
SHBrowseForFolderW
SHGetMalloc
SHGetPathFromIDListW

ole32

OleUninitialize
CoTaskMemFree
CLSIDFromString
CoTaskMemAlloc
CoInitialize
CoCreateInstance

shlwapi

PathIsRootW
StrCatW
StrCmpW
PathIsDirectoryW
SHGetValueW
StrChrIW

user32

EnableWindow
SetCursor
RedrawWindow
GetClientRect
SetWindowLongA
GetWindowLongW
InvalidateRect
LoadCursorW
DialogBoxParamW
SendDlgItemMessageW
ScreenToClient
ReleaseDC
LoadIconW
LoadImageW
SendMessageA
ShowWindow
FindWindowW
SetWindowPos
MessageBoxA
GetDlgItem
CreateWindowExW
GetWindowRect
SystemParametersInfoW
EnumThreadWindows
DefWindowProcW
MessageBoxW
wsprintfW
SendMessageW
SetForegroundWindow
SetTimer
PostMessageW
GetParent
LoadStringA
ExitWindowsEx
EnumChildWindows
SetWindowLongW

msvcrt

__setusermatherr
_controlfp
strtoul
??3@YAXPAX@Z
_ftol
_initterm
wcsncpy
__set_app_type
exit
__p__commode
__lconv_init
wcsncmp
_c_exit
_acmdln
_mbsinc
_except_handler3
_adjust_fdiv
_exit
__getmainargs
__p__fmode
wcscat
wcslen

advapi32

AdjustTokenPrivileges
RegOpenKeyW
RegOpenKeyExW
LookupAccountSidW
LookupPrivilegeValueW
RegQueryValueExW
RegEnumKeyExW
RegCloseKey
RegSetValueExW
GetTokenInformation
AllocateAndInitializeSid
FreeSid

setupapi

SetupOpenInfFileW
SetupOpenAppendInfFileW
SetupGetStringFieldW
SetupGetLineCountW

kernel32

HeapUnlock
DeleteFileW
SetCurrentDirectoryW
VirtualAlloc
GetVersionExW
GetCommState
CreateProcessW
LocalFree
CreateFileA
HeapLock
FileTimeToLocalFileTime
GetTempPathA
WriteFile
GetCurrentDirectoryW
CloseHandle
SetCommTimeouts
GetFileAttributesW
CreateThread
CloseHandle
GetCurrentThreadId
LoadLibraryExW
GetCurrentProcessId
ExitThread
ExitProcess
WideCharToMultiByte
FindClose
GetDriveTypeW
CreateDirectoryW
TerminateProcess
ReadFile
lstrcatW
FindFirstFileA
HeapAlloc
InitializeCriticalSection
FormatMessageW
GetVersion
SetErrorMode
VirtualFree
QueryPerformanceCounter
GetFileAttributesA
GetTempFileNameA
SetUnhandledExceptionFilter
CreateMutexW
lstrcpyW
DeleteCriticalSection
lstrlenW
GetProcAddress
GetModuleFileNameW
HeapFree
LeaveCriticalSection
OpenProcess
DeviceIoControl
CreateFileW
GetModuleHandleW
FindNextFileW
SetFilePointer
SetFileAttributesW
WaitForMultipleObjects
GetEnvironmentVariableW
UnhandledExceptionFilter
GetSystemTimeAsFileTime
GetTickCount
HeapCreate
GetCurrentProcess
DeleteFileA
MultiByteToWideChar
CreateEventW
LoadLibraryW
HeapQueryInformation
CreateDirectoryA

Sections

.text
Size: 232KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 78KB - Virtual size: 724KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df718d8c09b625e28734fb8681280713

Headers

DLL Characteristics

File Characteristics

Imports

shell32

ole32

shlwapi

user32

msvcrt

advapi32

setupapi

kernel32

Sections

.text Size: 232KB - Virtual size: 232KB

.data Size: 55KB - Virtual size: 55KB

.rsrc Size: 78KB - Virtual size: 724KB

.text
Size: 232KB - Virtual size: 232KB

.data
Size: 55KB - Virtual size: 55KB

.rsrc
Size: 78KB - Virtual size: 724KB