88ec8974d304b79940f6b6b2cf6edd38_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

88ec8974d304b79940f6b6b2cf6edd38_JaffaCakes118
Size

190KB
MD5

88ec8974d304b79940f6b6b2cf6edd38
SHA1

937f4301257ee28def90ba0b20a2bd4c2981c305
SHA256

a9c14ccb29ff09413bbc41c1f9b9d5e7a5d424ea884c9e09e66e4f25c95b91e9
SHA512

7c8c776a3db199db19b0364a2b72baac7ce0158feaeb5e696c8b69e90367efdcf257f9a44a7b861559dc047c7d7d8eea9ce01c2898f609bc524253877f369660
SSDEEP

3072:5fpQfvVyI7/UbAsAtLRSNEOQ8LCaDXGzF9Av0qvI8TY0ttWczRUErkZ:5BQfdD7MmtLYij8LCaDGRiv0sLTY0ZNR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88ec8974d304b79940f6b6b2cf6edd38_JaffaCakes118

Files

88ec8974d304b79940f6b6b2cf6edd38_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7d3f0dd12de052ef5ec8db78cfb7a838

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleFlushClipboard
CLSIDFromProgID
OleIsCurrentClipboard
CoTaskMemFree
CoRetireServer
CoTaskMemAlloc
CoFreeUnusedLibraries
CoGetClassObject
CoInitialize
StgOpenStorageOnILockBytes
CoCreateInstance
StgCreateDocfileOnILockBytes
CoUninitialize
CoRegisterMessageFilter
CoRevokeClassObject
OleInitialize
CreateILockBytesOnHGlobal
OleUninitialize
CLSIDFromString

kernel32

CreateFileW
GetModuleFileNameW
GetCurrentProcessId
LoadLibraryW
GetCalendarInfoW
GetLocaleInfoW
SetFilePointer
MoveFileW
InterlockedDecrement
ReadFile
GetVersion
FindClose
FindNextFileW
LocalFileTimeToFileTime
GetCurrentDirectoryW
SetFileTime
EnumResourceNamesA
CreateDirectoryW
DeleteFileW
SystemTimeToFileTime
ExitProcess
WriteFile
EnumResourceLanguagesW
GetFileAttributesW
GetSystemDefaultLangID
FindFirstFileW
lstrcpyW
MultiByteToWideChar
ConvertDefaultLocale
WideCharToMultiByte
RemoveDirectoryW
GetProcAddress

advapi32

RegCreateKeyExW
RegEnumKeyW
RegEnumKeyExW
RegDeleteKeyW
RegCloseKey
RegQueryInfoKeyW
RegSetValueExW
RegOpenKeyExW
RegOpenKeyW
RegQueryValueW
RegQueryValueExW

shlwapi

PathRemoveFileSpecW
PathStripToRootW
PathFindFileNameW
PathFindExtensionW
PathIsUNCW
PathFileExistsW
PathAppendW

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

user32

GetPropW
InvalidateRect
WinHelpW
GetClassLongW
CharNextW
CopyAcceleratorTableW
CreateWindowExW
RegisterWindowMessageW
IsRectEmpty
GetNextDlgGroupItem
SendDlgItemMessageA
RemovePropW
GetNextDlgTabItem
SetRect
SetPropW
InvalidateRgn
MessageBeep
CharUpperW
GetClassInfoExW
DestroyMenu

gdi32

DeleteDC
SetWindowExtEx
GetStockObject
RectVisible
ScaleWindowExtEx
SelectObject
TextOutW
PtVisible
ScaleViewportExtEx
GetDeviceCaps
SetViewportOrgEx
GetMapMode
Escape
GetBkColor
OffsetViewportOrgEx
ExtTextOutW
GetTextColor
ExtSelectClipRgn
GetRgnBox

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7d3f0dd12de052ef5ec8db78cfb7a838

Headers

File Characteristics

Imports

ole32

kernel32

advapi32

shlwapi

shell32

user32

gdi32

oleacc

Sections

.text Size: 107KB - Virtual size: 106KB

.rdata Size: 3KB - Virtual size: 3KB

.bss Size: 78KB - Virtual size: 77KB

.edata Size: 1024B - Virtual size: 116KB

.text
Size: 107KB - Virtual size: 106KB

.rdata
Size: 3KB - Virtual size: 3KB

.bss
Size: 78KB - Virtual size: 77KB

.edata
Size: 1024B - Virtual size: 116KB