8c1e3c1ec94a73e78499bd22eaeb4922_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8c1e3c1ec94a73e78499bd22eaeb4922_JaffaCakes118
Size

209KB
MD5

8c1e3c1ec94a73e78499bd22eaeb4922
SHA1

a8fd4c645ee17122ea13b0008f2835bb086cd6d4
SHA256

bfeaea6992d036a860987b280140396964b27277e8fc9b6799db6e2d64b81d80
SHA512

11a585319f54d2bf7a1b64a70726bb33c387c29f3821d80db108b22f9c8ce2a3cca7cafe37f0fab4d1d593ae938052669808fa492916c6246c3a0a840801da3d
SSDEEP

3072:H11dJg7MZzwOXazxU47MJudz9Ki1h1WKLuAoy3kozjuKLfgeBKEZT31:VHJgwzXXa9U47guTKA1Wm73DqY4eBKEZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8c1e3c1ec94a73e78499bd22eaeb4922_JaffaCakes118

Files

8c1e3c1ec94a73e78499bd22eaeb4922_JaffaCakes118
.exe windows:4 windows x86 arch:x86

18b68dc0ce0acabd4d33eb799499afb0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragQueryFile
ExtractIconExA
SHAppBarMessage
SHBrowseForFolderA
SHChangeNotify
SHCreateDirectoryExA
SHGetDesktopFolder
SHGetFileInfo
SHGetMalloc
SHGetPathFromIDListA
SHGetPathFromIDListW
SHGetSpecialFolderPathW
ShellExecuteA
ShellExecuteExW

kernel32

CompareFileTime
CopyFileA
CreateDirectoryA
GetCPInfo
GetDiskFreeSpaceA
GetExitCodeThread
GetFileSize
GetLocaleInfoW
GetTempPathW
GlobalLock
HeapDestroy
LoadLibraryA
MulDiv
OpenProcess
SetLastError
SetThreadLocale
TlsSetValue
UnhandledExceptionFilter
WaitForMultipleObjects
WritePrivateProfileStringA
lstrcatA

gdi32

ArcTo
CreateBitmap
CreateDCW
CreateDIBitmap
EnumEnhMetaFile
EnumFontFamiliesExA
ExtCreatePen
GetClipRgn
GetDeviceCaps
GetMetaFileBitsEx
GetRgnBox
GetTextColor
GetTextExtentPointA
GetWinMetaFileBits
SelectClipRgn
SetEnhMetaFileBits
SetMapperFlags
SetViewportOrgEx
TranslateCharsetInfo

comctl32

CreatePropertySheetPageW
CreateToolbarEx
DestroyPropertySheetPage
ImageList_Add
ImageList_BeginDrag
ImageList_Destroy
ImageList_DragLeave
ImageList_Draw
ImageList_GetDragImage
ImageList_GetImageCount
ImageList_LoadImageA
ImageList_SetDragCursorImage
ImageList_SetImageCount
ImageList_Write
PropertySheetA

ole32

CoInitializeSecurity
CoRegisterMessageFilter
CreateBindCtx
OleIsCurrentClipboard
ReleaseStgMedium
StringFromCLSID

user32

CharLowerA
CharNextA
DestroyMenu
DialogBoxParamA
DrawMenuBar
EndPaint
EqualRect
GetMenuStringA
GetMessagePos
GetScrollPos
GetSubMenu
IsRectEmpty
SetActiveWindow
SetCursor
SetTimer

advapi32

CloseServiceHandle
DeregisterEventSource
GetSecurityDescriptorDacl
InitializeSecurityDescriptor
OpenProcessToken
OpenServiceW
QueryServiceStatus
RegCreateKeyA
RegEnumKeyExA
RegOpenKeyExW
RegQueryValueA
RegQueryValueExW
RegSetValueExW

Sections

.text
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

iBjbVnko
Size: 2KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18b68dc0ce0acabd4d33eb799499afb0

Headers

File Characteristics

Imports

shell32

kernel32

gdi32

comctl32

ole32

user32

advapi32

Sections

.text Size: 87KB - Virtual size: 87KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 98KB - Virtual size: 97KB

.rsrc Size: 18KB - Virtual size: 17KB

iBjbVnko Size: 2KB - Virtual size: 120KB

.text
Size: 87KB - Virtual size: 87KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 98KB - Virtual size: 97KB

.rsrc
Size: 18KB - Virtual size: 17KB

iBjbVnko
Size: 2KB - Virtual size: 120KB