88f81fd1d6c2569bc73efefadbebcab0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

88f81fd1d6c2569bc73efefadbebcab0_JaffaCakes118
Size

215KB
MD5

88f81fd1d6c2569bc73efefadbebcab0
SHA1

b9dbbc22cb41a67a98a4aa63027b962b7bbd3da2
SHA256

6f954ca893eb1f2ea774fa3bb2de1198ff21bc5978eddfc868aa3d3ffe9d3f59
SHA512

9d1e6d79809d3b7ebee484289c7365f3652af62f2cf8ed5b327eefe90d269a0561630aa423ea5faf0ab2e24e8c7db8da5bc2278dee595e7eef4b3390905a168d
SSDEEP

3072:MrfJf6RG0krj20/IW8lpW2EX2fsk/JQWjnRc7TJVgmxD141c:Mrxyj6f2jm0mFVLx54K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88f81fd1d6c2569bc73efefadbebcab0_JaffaCakes118

Files

88f81fd1d6c2569bc73efefadbebcab0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f996308d3c7b5e734e378156042a389e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragAcceptFiles
DragFinish
DragQueryFileW
ExtractIconA
ExtractIconExA
ExtractIconW
SHAppBarMessage
SHBrowseForFolderW
SHGetDesktopFolder
SHGetDiskFreeSpaceExW
SHGetFileInfoW
SHGetMalloc
SHGetPathFromIDList
SHGetPathFromIDListA
SHGetSpecialFolderLocation
ShellExecuteA
ShellExecuteEx
ShellExecuteExA
Shell_NotifyIconA
Shell_NotifyIconW

gdi32

CreateDCW
CreateEllipticRgn
CreateEnhMetaFileA
CreateICA
EnumFontFamiliesA
EnumFontFamiliesExW
GetEnhMetaFileHeader
GetObjectW
GetRegionData
GetRgnBox
GetSystemPaletteEntries
GetTextColor
GetTextFaceA
GetTextFaceW
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
PlayEnhMetaFile
PlayMetaFileRecord
PtVisible
RealizePalette
RemoveFontResourceA
SetMapMode
SetMetaFileBitsEx
SetPixel
SetTextColor
SetWindowOrgEx
StretchBlt
UnrealizeObject

kernel32

CreateFileA
CreateFileW
DeleteFileW
GetFileSize
GetOEMCP
GetStartupInfoW
GetUserDefaultLangID
GetVersionExA
GetWindowsDirectoryA
GlobalLock
GlobalUnlock
InterlockedExchange
IsDebuggerPresent
IsValidCodePage
LCMapStringW
LoadLibraryA
LoadResource
LockResource
MulDiv
OutputDebugStringA
RemoveDirectoryA
ResetEvent
TerminateThread
UnmapViewOfFile
VirtualFree
WideCharToMultiByte
lstrcmpiA
lstrcpyA
lstrlenW

user32

AdjustWindowRectEx
CreateWindowExA
DestroyWindow
DrawIcon
GetDCEx
GetMenuItemCount
GetMenuItemID
GetPropA
GetScrollInfo
GetScrollPos
GetSystemMetrics
GetWindowLongA
InsertMenuA
InvalidateRect
IsChild
IsIconic
IsWindowVisible
OffsetRect
PostQuitMessage
RedrawWindow
ReleaseCapture
SendDlgItemMessageA
SetMenu
SetPropA
SetWindowTextA
UpdateWindow

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

bvqnUQew
Size: 2KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f996308d3c7b5e734e378156042a389e

Headers

File Characteristics

Imports

shell32

gdi32

kernel32

user32

Sections

.text Size: 89KB - Virtual size: 88KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 99KB - Virtual size: 98KB

.rsrc Size: 21KB - Virtual size: 20KB

bvqnUQew Size: 2KB - Virtual size: 120KB

.text
Size: 89KB - Virtual size: 88KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 99KB - Virtual size: 98KB

.rsrc
Size: 21KB - Virtual size: 20KB

bvqnUQew
Size: 2KB - Virtual size: 120KB