8bc47f534bb370295ba47d919c9e6d80_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8bc47f534bb370295ba47d919c9e6d80_JaffaCakes118
Size

580KB
MD5

8bc47f534bb370295ba47d919c9e6d80
SHA1

b8afd690f70270fed5f77008b81956c2a6190dd1
SHA256

77ad4ac91249601b680aa7acd4ffff8c06dbe6a84b03a72d998febb10908c2db
SHA512

52fe002e1e31b8b093525deefae13fcec9f64dc0d87f0f01f445832dc408be94bc8bab415edb592b0a50e86ab4f1b8c326aa3b902739077204b8d800b3df7214
SSDEEP

12288:4IpqV72Zg5KludYTmFm1hbs1rtdYUTQPM5PLrj+h30/7BOHFJ6:4I072mUiImFm1hbs1rcUSarih30/9OFU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8bc47f534bb370295ba47d919c9e6d80_JaffaCakes118

Files

8bc47f534bb370295ba47d919c9e6d80_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6e5e7e447d46a442f7757af8d4c8aed0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\oedecwk.pdb

Imports

comctl32

ImageList_BeginDrag
_TrackMouseEvent
InitCommonControlsEx
CreateStatusWindow
ImageList_Copy
ImageList_GetIconSize
CreatePropertySheetPageA

kernel32

GetTickCount
CloseHandle
GetVolumeInformationA
SetUnhandledExceptionFilter
FindAtomW
GlobalGetAtomNameA
WideCharToMultiByte
FlushFileBuffers
DeleteAtom
SetLastError
SetHandleCount
GetStringTypeW
LocalSize
CreateDirectoryW
GetCurrentThreadId
GetDriveTypeW
HeapDestroy
DeleteCriticalSection
WriteFile
GetCPInfo
GetCommandLineW
SetStdHandle
lstrcpynA
LeaveCriticalSection
GlobalCompact
GetPrivateProfileSectionW
ExitProcess
GetTempFileNameA
MultiByteToWideChar
GetCalendarInfoA
lstrcmpW
TlsGetValue
HeapAlloc
InterlockedExchange
GetDiskFreeSpaceW
GetStdHandle
SetFilePointer
CreateProcessW
GetStartupInfoA
WaitNamedPipeA
VirtualProtectEx
FreeEnvironmentStringsA
LoadLibraryW
TlsAlloc
GetEnvironmentStringsW
IsValidLocale
GetCommandLineA
GetProfileIntW
GetDiskFreeSpaceExA
EnumResourceTypesA
FreeEnvironmentStringsW
LCMapStringA
CompareStringA
GetCurrencyFormatA
OutputDebugStringW
GetCurrentProcess
CreateRemoteThread
ReadConsoleOutputAttribute
ReadFile
GetLocalTime
GetModuleHandleA
TerminateProcess
HeapReAlloc
GetDateFormatA
IsBadWritePtr
OpenEventW
HeapFree
GetModuleFileNameW
GetSystemDefaultLCID
GetLastError
MoveFileA
TlsSetValue
SetConsoleCtrlHandler
OpenMutexA
SetFileAttributesW
GetLongPathNameW
GetThreadContext
VirtualQuery
GetEnvironmentStrings
IsBadReadPtr
LoadLibraryA
GetSystemTime
InterlockedIncrement
GlobalAlloc
GetVersion
UnhandledExceptionFilter
InitializeCriticalSection
SystemTimeToFileTime
LCMapStringW
LocalFlags
GetStartupInfoW
GetStringTypeA
GetStringTypeExA
GetUserDefaultLangID
SetEnvironmentVariableA
DeleteFileA
CompareStringW
WriteConsoleOutputA
GetSystemTimeAsFileTime
InterlockedDecrement
QueryPerformanceCounter
CreateMutexA
RtlUnwind
RtlMoveMemory
EnumCalendarInfoW
GetFileType
GetProcAddress
GetFullPathNameW
ReadConsoleOutputCharacterW
OutputDebugStringA
GetCurrentThread
EnterCriticalSection
FileTimeToSystemTime
lstrcat
GetTimeZoneInformation
GetDiskFreeSpaceExW
GetModuleFileNameA
VirtualAlloc
InterlockedExchangeAdd
HeapCreate
GetCurrentProcessId
VirtualFree
GetMailslotInfo
TlsFree

user32

DestroyCursor
CharPrevW
LoadMenuA
DlgDirListW
DestroyWindow
DrawAnimatedRects
DdeClientTransaction
IsDlgButtonChecked
CreateWindowExW
DdeCreateStringHandleW
LoadImageA
DdeQueryConvInfo
MessageBeep
DdeAbandonTransaction
CreateDialogIndirectParamA
SwitchToThisWindow
EmptyClipboard
ChangeDisplaySettingsW
UnloadKeyboardLayout
CreateAcceleratorTableA
ToUnicode
InvertRect
RegisterDeviceNotificationA
GetNextDlgTabItem
SetUserObjectInformationA
SetForegroundWindow
DdeGetData
DlgDirListA
DialogBoxIndirectParamA
DdeUninitialize
EnumDisplaySettingsA
FillRect
SetMenu
EnumDesktopsA
DdeCreateDataHandle
CreateIconIndirect
GetCursorPos
GetMenuItemInfoA
GetInputDesktop
GetWindowModuleFileNameW
EnableMenuItem
CharToOemBuffW
GetClassInfoA
LoadBitmapW
CreateCaret
ScreenToClient
SetMessageExtraInfo
SetRectEmpty
SetScrollRange
GetDlgItemInt
GetWindowTextA
SetWindowWord
RegisterClassA
WindowFromPoint
RegisterClassExA
LoadAcceleratorsA
GetClipboardData
PostQuitMessage
CharToOemW
MonitorFromWindow
SetMenuContextHelpId
GetClassNameA
GetPropW
GetPriorityClipboardFormat
MessageBoxA
ChangeMenuW
CountClipboardFormats
SetMenuItemBitmaps
CloseWindowStation
RemoveMenu
ReleaseCapture
wvsprintfA
ActivateKeyboardLayout
MonitorFromRect
GetMenuContextHelpId
IsDialogMessageW
IsWindowEnabled
UnhookWindowsHook
ShowWindow
IsClipboardFormatAvailable
IsWindowUnicode
CallNextHookEx
GetUserObjectSecurity
GetUpdateRgn
DrawTextA
DefWindowProcW
CreateWindowExA
DefWindowProcA
GetMenuItemID
EndPaint
VkKeyScanExA
CheckDlgButton
GetDCEx
SetRect
TrackMouseEvent
DrawIcon
MapWindowPoints
LoadCursorW

Sections

.text
Size: 196KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 247KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6e5e7e447d46a442f7757af8d4c8aed0

Headers

File Characteristics

PDB Paths

Imports

comctl32

kernel32

user32

Sections

.text Size: 196KB - Virtual size: 192KB

.rdata Size: 248KB - Virtual size: 247KB

.data Size: 112KB - Virtual size: 138KB

.rsrc Size: 20KB - Virtual size: 16KB

.text
Size: 196KB - Virtual size: 192KB

.rdata
Size: 248KB - Virtual size: 247KB

.data
Size: 112KB - Virtual size: 138KB

.rsrc
Size: 20KB - Virtual size: 16KB