88481cb31734f3afcc5686c6b58b99ab_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

88481cb31734f3afcc5686c6b58b99ab_JaffaCakes118
Size

528KB
MD5

88481cb31734f3afcc5686c6b58b99ab
SHA1

36580b31ff31a108ff67e02e812a52953c4f7cc5
SHA256

9e01e7d260b72bb88bd9de463b956da9079221fc0e35a7a914ad5e41443a1c1f
SHA512

02e542c733cf45167040bc18431f538ab2609ad36a4c51e015619ff394c929f0ca23bf05a597641db5ea3bf6b6d44830f140fb499844274af961ef0c80fa03ee
SSDEEP

12288:wXC/JJCBlBfbQ99Z+39zuqSk5QnTjuzxIn/YDT8WY877:Y0SlBfs9L+oqb5YPuzxI/YDwWPn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88481cb31734f3afcc5686c6b58b99ab_JaffaCakes118

Files

88481cb31734f3afcc5686c6b58b99ab_JaffaCakes118
.exe windows:4 windows x86 arch:x86

77d02701577d39df2a864788e1067070

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextColor
EnableEUDC
PaintRgn
SelectPalette
ResetDCA
GetMetaFileW
DescribePixelFormat
CreateEnhMetaFileA

wininet

InternetSetCookieW

user32

CharLowerBuffW
GetKeyboardType
DestroyWindow
ValidateRgn
OemToCharBuffW
DefWindowProcA
MessageBoxA
SetClipboardViewer
GetLastActivePopup
FillRect
LockWindowUpdate
OemToCharBuffA
SetUserObjectInformationW
RegisterClassA
RegisterClassExA
CreateWindowExW
GetMenuStringW
ShowWindow
GetInputState
LoadIconW
VkKeyScanA
DlgDirListComboBoxW
GetPropW
SetWindowWord
AdjustWindowRectEx
GetMenuStringA
ShowOwnedPopups
InSendMessageEx
DrawMenuBar
EnumPropsExW
IsCharUpperA
GetKeyNameTextA
IsCharLowerW
PackDDElParam
LoadCursorA
WinHelpA
IsDialogMessage
GetDlgItem
ChangeDisplaySettingsExA
ModifyMenuA
GetScrollRange
EnumDisplaySettingsExW
SetParent
GetMessageExtraInfo
GetScrollInfo
GetWindowDC
GetClipboardSequenceNumber
GetWindowThreadProcessId
RegisterDeviceNotificationW
OpenInputDesktop
GetClassInfoExA
NotifyWinEvent
GetWindowRect
GetUpdateRect

comdlg32

GetFileTitleW
PrintDlgA

kernel32

GetOEMCP
EnterCriticalSection
FillConsoleOutputCharacterW
ExitProcess
GetLocalTime
SetConsoleMode
GetStdHandle
InitializeCriticalSection
HeapCreate
GetCPInfo
SetEndOfFile
GetStringTypeW
SetStdHandle
CreateEventW
DeleteCriticalSection
GetProfileSectionW
GetTickCount
GetFileType
EnumDateFormatsExW
GetCurrentProcess
HeapReAlloc
GlobalSize
WriteFile
VirtualQueryEx
SetEnvironmentVariableA
FindFirstFileA
GetCurrentThreadId
CreateDirectoryExW
FreeEnvironmentStringsA
EnumDateFormatsW
InterlockedIncrement
WideCharToMultiByte
GetVersion
GetModuleHandleA
GetLastError
RtlUnwind
lstrlenW
QueryPerformanceCounter
UnlockFileEx
GetCommandLineA
LoadLibraryA
LockFileEx
GetSystemTimeAsFileTime
CompareFileTime
GetFileAttributesExW
GetEnvironmentStringsW
GetEnvironmentStrings
SetThreadPriority
DeleteFileW
CompareStringA
GetStartupInfoA
GetTimeZoneInformation
FreeEnvironmentStringsW
LCMapStringW
CreateThread
FillConsoleOutputAttribute
HeapDestroy
GetProfileIntA
TlsFree
LeaveCriticalSection
SetLocaleInfoW
PulseEvent
TerminateProcess
InterlockedExchange
GetDateFormatW
CompareStringW
GetPrivateProfileStringA
GetModuleFileNameA
SetLastError
InterlockedDecrement
SetFilePointer
GetCalendarInfoW
DeleteAtom
ReadFile
GetCurrencyFormatW
IsBadWritePtr
FlushFileBuffers
GetStringTypeA
GetCurrentThread
GetProcAddress
MultiByteToWideChar
LCMapStringA
SetHandleCount
GetDriveTypeA
TlsSetValue
TlsGetValue
HeapFree
OpenMutexA
GetSystemTime
VirtualFreeEx
CreateMutexA
VirtualFree
UnhandledExceptionFilter
CloseHandle
HeapAlloc
VirtualAlloc
GetPrivateProfileStructW
GetCurrentProcessId
GetExitCodeThread
GetLogicalDriveStringsW
WriteConsoleOutputCharacterA
TlsAlloc
RtlMoveMemory
VirtualQuery
SetEnvironmentVariableW
FileTimeToDosDateTime
GetACP

shell32

ExtractAssociatedIconW
FreeIconList
SHGetNewLinkInfo

comctl32

ImageList_BeginDrag
ImageList_SetBkColor
InitCommonControlsEx
ImageList_SetDragCursorImage
CreateStatusWindowA
ImageList_GetBkColor
CreateToolbarEx
ImageList_AddIcon
ImageList_GetImageRect
ImageList_AddMasked
ImageList_Duplicate
ImageList_GetDragImage
ImageList_DrawEx
InitMUILanguage

Sections

.text
Size: 152KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 244KB - Virtual size: 241KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

77d02701577d39df2a864788e1067070

Headers

File Characteristics

Imports

gdi32

wininet

user32

comdlg32

kernel32

shell32

comctl32

Sections

.text Size: 152KB - Virtual size: 150KB

.rdata Size: 244KB - Virtual size: 241KB

.data Size: 116KB - Virtual size: 118KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 152KB - Virtual size: 150KB

.rdata
Size: 244KB - Virtual size: 241KB

.data
Size: 116KB - Virtual size: 118KB

.rsrc
Size: 12KB - Virtual size: 11KB