89400c1b6e787dee88422cae8767490e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

89400c1b6e787dee88422cae8767490e_JaffaCakes118
Size

5.8MB
MD5

89400c1b6e787dee88422cae8767490e
SHA1

2b376fef927b19b86230c93dc34aafea6220caf5
SHA256

48d9faf071bc0ae61f686ea56957f04aa5c74fb9da9f37c622c39a9b95fdfc3e
SHA512

5a850de541be245c677a4650313655ce32d8e14e85019c8c046cc502b120b0c2a9309cd0bfaca7cd1b6b1c464a3b3bf96159d6aa3314bcd3311d4258ddceb751
SSDEEP

98304:UuVBi+gHPV8VUKi/Gb2a3WfTuAGaP+PHFowyXuEieOUw6GpYROI53:BChyIGqdSAGyqjyXVI6GpYRZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89400c1b6e787dee88422cae8767490e_JaffaCakes118

Files

89400c1b6e787dee88422cae8767490e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

139d089ca40c8140178d478cb891dd7b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ReleaseDC
SetWindowsHookExW
SetWindowsHookExA
ChangeMenuA
TrackPopupMenu
RedrawWindow
GetUserObjectSecurity
ReleaseCapture
EnumDisplaySettingsA
EnumThreadWindows
MapWindowPoints
ArrangeIconicWindows
EnumDisplayDevicesW
DialogBoxIndirectParamW
SetWindowContextHelpId
LoadBitmapA
RemovePropA
RegisterDeviceNotificationW
DialogBoxIndirectParamA
CreatePopupMenu
SetClipboardViewer
DefDlgProcA
TranslateMessage
SetMenuItemInfoW
SetMenuItemBitmaps
GetClassInfoExW
wsprintfW
InsertMenuW
PeekMessageW
LoadKeyboardLayoutA
MessageBoxIndirectW
RegisterWindowMessageA
SetWindowTextA
DispatchMessageW
LoadIconW
CreateDesktopA
IsIconic
DefDlgProcW
GetActiveWindow
SetCursorPos
OpenWindowStationA
WinHelpA
SetClipboardData

shell32

SHGetDesktopFolder
SHFileOperationW
DragFinish
FindExecutableW
DragAcceptFiles
SHFileOperationA
Shell_NotifyIconA
SHGetSpecialFolderPathA
ShellExecuteA

comctl32

ImageList_GetImageInfo
ImageList_SetImageCount
ImageList_GetImageCount
ImageList_LoadImageA

advapi32

GetUserNameA
LookupAccountSidW
AccessCheckAndAuditAlarmA
RegSetValueW
LookupAccountNameW
LogonUserW
CryptDecrypt
RegQueryValueW
CryptVerifySignatureA
SetServiceStatus
CryptDestroyHash
SetEntriesInAclW
ControlService
AdjustTokenPrivileges
CreateServiceA
RegConnectRegistryW
GetTokenInformation

gdi32

SetPixel
GetEnhMetaFileHeader
SetArcDirection
GetCurrentPositionEx
CreateEnhMetaFileA
SwapBuffers
GetEnhMetaFilePaletteEntries
OffsetViewportOrgEx

kernel32

TlsGetValue
SystemTimeToFileTime
GetSystemTimeAsFileTime
TryEnterCriticalSection
SetSystemTime
PeekConsoleInputW
IsProcessorFeaturePresent
GetDiskFreeSpaceExA
SetCommMask
IsBadStringPtrA
LoadLibraryExW
GetModuleHandleA
lstrcpyA
CompareStringW
LocalLock
SetVolumeLabelA
GetStartupInfoA
GetProcessHeap
OutputDebugStringA
GetBinaryTypeA
OpenFile
CreateDirectoryA
EnumResourceNamesW
GetTapeStatus
FindResourceExW
GlobalFindAtomW
LocalReAlloc
GetSystemDirectoryW
CopyFileExW
SetConsoleCursorPosition
GlobalFlags
PulseEvent
RemoveDirectoryA
GetLogicalDriveStringsA
GetUserDefaultLangID
VirtualLock
SetCurrentDirectoryA
EnumSystemCodePagesW
VirtualAllocEx
OpenSemaphoreW
FindCloseChangeNotification
SetCommTimeouts
IsValidLocale
SetFileTime
SetupComm
QueryDosDeviceW
WaitNamedPipeA
GlobalAddAtomW
GetVolumeInformationW
SetConsoleTitleA
GetPrivateProfileSectionW
VirtualQueryEx
_llseek
GetProcessTimes
ExitProcess
ReadConsoleOutputA
SetHandleCount
GetAtomNameA
FindFirstFileExW
CancelIo
GetOverlappedResult
GetFileType
GetDateFormatA
GetACP
SetEvent
GetStringTypeExW
ReadConsoleInputW
ExitThread
GetFileAttributesA
GetThreadContext
UnhandledExceptionFilter
RemoveDirectoryW
OpenMutexA
RaiseException
GetSystemTimeAdjustment
SetEndOfFile
GetTickCount
ReadConsoleA
GetCurrentProcessId
SetMailslotInfo
_hread
lstrcmpA
GetOEMCP
FindFirstFileA
UnmapViewOfFile
SetProcessShutdownParameters
GetBinaryTypeW
VirtualUnlock
EnumResourceLanguagesW
SetProcessWorkingSetSize
DeleteCriticalSection
LoadLibraryExA
lstrcpynA
GetThreadPriority

ole32

CoTreatAsClass
CoLockObjectExternal
OleCreate
StringFromGUID2
OleInitialize
StgCreateStorageEx
CoQueryProxyBlanket
OleGetIconOfClass

Sections

.text
Size: 7KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5.5MB - Virtual size: 5.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

139d089ca40c8140178d478cb891dd7b

Headers

File Characteristics

Imports

user32

shell32

comctl32

advapi32

gdi32

kernel32

ole32

Sections

.text Size: 7KB - Virtual size: 228KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 5.5MB - Virtual size: 5.5MB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 7KB - Virtual size: 228KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 5.5MB - Virtual size: 5.5MB

.rsrc
Size: 17KB - Virtual size: 16KB