87b82ec92aaf82a3c94f3241f4a92286_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

87b82ec92aaf82a3c94f3241f4a92286_JaffaCakes118
Size

382KB
MD5

87b82ec92aaf82a3c94f3241f4a92286
SHA1

abc0e45b3df42e027f6ffb9f9c1a7afbf175bb55
SHA256

6280ceb1063dff19ed91f927c887868a92208a6c20614683cd6fa0deeb2ecf91
SHA512

99c443ffd806ef2f81deb9737197b8f14eed446b362c94f3da13fc20140f77492d00c560b003272f845cff2e4b51bb8630079b48dce9cfc7922f574d82dca9c5
SSDEEP

6144:LYnwvPxTJ770AlOAf4FitHTRKFeuYQtn7AwUPzqsPm4FDWM488o9hSY2rW7FFz:8+PxTJ770AlpKi+FeuzAwUftW05EzC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87b82ec92aaf82a3c94f3241f4a92286_JaffaCakes118

Files

87b82ec92aaf82a3c94f3241f4a92286_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6283808b8bb24f946322c0dcb5b6ca02

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

CreatePropertySheetPage
CreateStatusWindow
ImageList_LoadImageW
ImageList_SetOverlayImage
ImageList_SetDragCursorImage
ImageList_GetBkColor
ImageList_DragLeave
ImageList_BeginDrag
ImageList_DragEnter
ImageList_GetDragImage
ImageList_AddIcon
DrawInsert
ImageList_GetIconSize
ImageList_SetImageCount
ImageList_Copy
ImageList_Add
InitCommonControlsEx
CreateStatusWindowW

gdi32

GetMetaFileW
SetSystemPaletteUse
SetBoundsRect
GetEnhMetaFileDescriptionW
SetRectRgn
SetBrushOrgEx
CreateDCA
ResetDCA
SetWorldTransform
EndPath
SetViewportOrgEx
SelectPalette

kernel32

GetCurrentProcess
GetEnvironmentStrings
GetModuleFileNameW
HeapFree
lstrcmpA
WideCharToMultiByte
WriteConsoleW
LoadLibraryA
GetModuleFileNameA
RtlUnwind
GetSystemTimeAsFileTime
TerminateProcess
TlsAlloc
VirtualQuery
GetTimeZoneInformation
GetFileType
InitializeCriticalSection
GetUserDefaultLCID
MultiByteToWideChar
EnumSystemLocalesA
IsBadReadPtr
IsBadWritePtr
GetEnvironmentStringsW
GetCurrentThread
GetTimeFormatA
GetVersionExA
FreeEnvironmentStringsW
GetOEMCP
IsValidLocale
HeapAlloc
VirtualAlloc
SetStdHandle
SetHandleCount
UnhandledExceptionFilter
GetCommandLineA
CompareStringA
TlsFree
VirtualFree
QueryPerformanceCounter
LCMapStringW
EnumDateFormatsA
FreeEnvironmentStringsA
LCMapStringA
SetLastError
LeaveCriticalSection
IsValidCodePage
ReadFile
HeapDestroy
CloseHandle
GetStringTypeW
GetLocaleInfoA
CreateMutexA
GetTickCount
EnterCriticalSection
DuplicateHandle
SetEnvironmentVariableA
TlsSetValue
GetCommandLineW
GetStartupInfoW
GetCurrentThreadId
GetProcAddress
ExitProcess
GetACP
GetCurrentProcessId
HeapSize
FlushFileBuffers
GetStringTypeA
GetStdHandle
GetModuleHandleA
GetStartupInfoA
SetFilePointer
GetLastError
GetDateFormatA
WriteProfileSectionA
InterlockedExchange
OpenMutexA
FindClose
CompareStringW
GetProfileIntW
WriteFile
CommConfigDialogA
TlsGetValue
GetSystemInfo
GetCPInfo
VirtualProtect
DeleteCriticalSection
GetStringTypeExW
GetLocaleInfoW
HeapCreate
FindNextChangeNotification
HeapReAlloc

shell32

SHGetSpecialFolderLocation

user32

GetSystemMetrics
ActivateKeyboardLayout
GetMessageA
WINNLSEnableIME
PeekMessageW
RegisterClassA
CreateWindowExA
SendMessageTimeoutW
GetKeyboardState
GetDesktopWindow
SetDoubleClickTime
CharUpperW
InsertMenuW
UnionRect
GetWindowModuleFileNameA
RegisterClassExA
RegisterClipboardFormatA
MessageBoxW
ShowWindow
DdeConnectList
DdeCreateStringHandleA
InsertMenuItemW
GetClassWord
UnregisterHotKey
DefWindowProcW
UnhookWindowsHookEx
ToAscii
MapVirtualKeyW
CopyRect
MapDialogRect
GetKeyNameTextW
GetPriorityClipboardFormat
GetDlgItemTextA
DdeQueryStringW
DdeSetUserHandle
SetWindowContextHelpId
DdeClientTransaction
LookupIconIdFromDirectoryEx
TrackPopupMenu
DestroyWindow
GetMenuCheckMarkDimensions
GetSubMenu

advapi32

CryptSetProviderW
RegOpenKeyW
CryptDeriveKey
RegConnectRegistryA
RegNotifyChangeKeyValue
CreateServiceW
LookupPrivilegeNameA
RegQueryValueExA
LookupPrivilegeValueA
CryptSetProviderExW
CryptVerifySignatureA
LookupAccountSidA
CryptGetDefaultProviderW
RegQueryInfoKeyW
CryptHashSessionKey
RegReplaceKeyW
RegCreateKeyExA
CryptGetHashParam
CryptAcquireContextW
RegEnumKeyA

Sections

.text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 102KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6283808b8bb24f946322c0dcb5b6ca02

Headers

File Characteristics

Imports

comctl32

gdi32

kernel32

shell32

user32

advapi32

Sections

.text Size: 136KB - Virtual size: 136KB

.rdata Size: 125KB - Virtual size: 125KB

.data Size: 102KB - Virtual size: 124KB

.rsrc Size: 17KB - Virtual size: 17KB

.text
Size: 136KB - Virtual size: 136KB

.rdata
Size: 125KB - Virtual size: 125KB

.data
Size: 102KB - Virtual size: 124KB

.rsrc
Size: 17KB - Virtual size: 17KB