88d77c91732d8f9d38b388b3d82a4667_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

88d77c91732d8f9d38b388b3d82a4667_JaffaCakes118
Size

258KB
MD5

88d77c91732d8f9d38b388b3d82a4667
SHA1

d4505d25a2c1b97b0d70ade40045ac6107fce691
SHA256

147da0ee2fb3846a5fc9b663180a8e391fbc90ecb34d18782239313162543353
SHA512

c07d93dfaae89a0e0fd5a7321835a992ae9ac9ee312c0d30dec31f368d9819c62280582dcd0d457ff39cfce850735ab3b0333e105f5ab63e548725a348bc6c21
SSDEEP

6144:/sMryq8yLMIeJ0lVYKHD7i44KOzgeGB5y:LyfTJwVa4dT5y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88d77c91732d8f9d38b388b3d82a4667_JaffaCakes118

Files

88d77c91732d8f9d38b388b3d82a4667_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2bfdef3afe963f4cf9b08d5c07868024

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFullPathNameA
GetFileAttributesA
lstrcpynW
lstrlenW
GetFileAttributesW
FreeLibrary
MultiByteToWideChar
GlobalAlloc
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentThreadId
GetCurrentProcessId
CreateEventW
GetLogicalDriveStringsW
GetVersion
InitializeCriticalSection
WaitForSingleObject
lstrlenA
GetModuleHandleW
LoadLibraryW
GetLastError
LocalFree
GetModuleFileNameW
LocalAlloc
SetUnhandledExceptionFilter
QueryPerformanceCounter
lstrcpynA
GetVersionExW
GetCurrentThread
GetCurrentProcess
GetTimeFormatW
GetDateFormatW
Sleep
SetEvent
GetVersionExA
GetThreadLocale
GetLocaleInfoA
WaitForMultipleObjects
GetACP
CreateMutexW
GetProcAddress
LoadLibraryA

user32

PostMessageW
EnableWindow
LoadImageW
IsWindow
CheckMenuItem
EnableMenuItem
GetSubMenu
LoadMenuW
LoadCursorW
SetCursor
LoadIconW
GetCursorPos
SendMessageW
DestroyIcon
InvalidateRect
GetSystemMetrics
SetForegroundWindow
SetWindowTextA
GetMenuItemInfoW
CreateDialogIndirectParamW
ShowCursor
EndMenu
SetActiveWindow
CreateWindowExA
GetScrollPos
GetFocus
CharPrevA
SetParent
MonitorFromWindow
InsertMenuA
AdjustWindowRect
GetClassInfoA
CreateAcceleratorTableA
RegisterClassW
SetWindowLongW
GetDCEx
CreateDialogParamW
GetMenuStringA
PeekMessageA
MessageBoxIndirectW
SendDlgItemMessageA
EndDialog
CreateDesktopW
SetMenu
DestroyCursor
TrackPopupMenu
LoadBitmapW
CharLowerW
SetWindowTextW
LoadBitmapA
GetForegroundWindow
WaitMessage
DialogBoxParamA
GetActiveWindow
GetMenu
WaitForInputIdle
GetMenuItemCount
InsertMenuItemA
OffsetRect
CharUpperA
ActivateKeyboardLayout
PostQuitMessage
GetClassInfoExW
SetDlgItemTextA

gdi32

CreateCompatibleDC
CreateSolidBrush
DeleteObject
CreateMetaFileW
CreateBitmap
GetTextExtentPointW
SetEnhMetaFileBits
GetStockObject
CreatePolyPolygonRgn
SelectBrushLocal

advapi32

EqualSid
GetTokenInformation
OpenProcessToken
OpenThreadToken
RegDeleteKeyW
RegDeleteKeyA
FreeSid
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegQueryValueExW
RegSetValueExW
RegEnumKeyW
RegDeleteValueW
RegQueryInfoKeyW
RegEnumValueW
RegEnumKeyExW
LookupAccountSidW
AllocateAndInitializeSid

shell32

SHGetDesktopFolder
SHGetSpecialFolderLocation
ExtractIconExW

oleaut32

SystemTimeToVariantTime
VariantTimeToSystemTime

samlib

SamCloseHandle
SamFreeMemory

Sections

.text
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.VknC
Size: 73KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vRwlQ
Size: 3KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ucIHS
Size: 1024B - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.raO
Size: 1KB - Virtual size: 490KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.PY
Size: 148KB - Virtual size: 178KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2bfdef3afe963f4cf9b08d5c07868024

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

oleaut32

samlib

Sections

.text Size: 11KB - Virtual size: 12KB

.VknC Size: 73KB - Virtual size: 138KB

.vRwlQ Size: 3KB - Virtual size: 43KB

.rdata Size: 4KB - Virtual size: 26KB

.ucIHS Size: 1024B - Virtual size: 83KB

.raO Size: 1KB - Virtual size: 490KB

.data Size: 6KB - Virtual size: 81KB

.PY Size: 148KB - Virtual size: 178KB

.rsrc Size: 6KB - Virtual size: 6KB

.reloc Size: 1KB - Virtual size: 4KB

.text
Size: 11KB - Virtual size: 12KB

.VknC
Size: 73KB - Virtual size: 138KB

.vRwlQ
Size: 3KB - Virtual size: 43KB

.rdata
Size: 4KB - Virtual size: 26KB

.ucIHS
Size: 1024B - Virtual size: 83KB

.raO
Size: 1KB - Virtual size: 490KB

.data
Size: 6KB - Virtual size: 81KB

.PY
Size: 148KB - Virtual size: 178KB

.rsrc
Size: 6KB - Virtual size: 6KB

.reloc
Size: 1KB - Virtual size: 4KB