8be46796b7beada5a007065a358a99a8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8be46796b7beada5a007065a358a99a8_JaffaCakes118
Size

207KB
MD5

8be46796b7beada5a007065a358a99a8
SHA1

a2ec323450a242abc34f57a77dd68f87137f6fbf
SHA256

334d9357cecbe494fe49ac31aa846a08ba91b285bf6bbda3c166a6da80667827
SHA512

01402a94ea23530e77681a3c85df42719c09e2125c20db18d78e96ae3e2fe24c3aebf9759d3e8d990a7b751f5350fe2d5bb9e7dd4143239933ae16adb724e27b
SSDEEP

6144:HG9js1mcgzCEth42k9AxZZFFWO/ITZT8a+y:mtaAb3xZZFCTSa9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8be46796b7beada5a007065a358a99a8_JaffaCakes118

Files

8be46796b7beada5a007065a358a99a8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3aa6da9c57231fe0010fc8db97d61606

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

CreateFontIndirectA
SetTextColor
GetBitmapBits
CreatePen
AnimatePalette
GetPath
GetBkColor
RoundRect
PlgBlt
PolyBezier
SetStretchBltMode
FlattenPath
StrokePath
ExtCreatePen
SetDIBits

shlwapi

PathCanonicalizeW
PathStripToRootW
PathIsRelativeW
PathIsURLW
PathIsRootW
PathCombineW

ole32

CoGetClassObject
GetHGlobalFromStream
StgOpenStorageOnILockBytes
CoFreeUnusedLibraries
CLSIDFromProgID
ReleaseStgMedium
StgCreateDocfileOnILockBytes
GetHGlobalFromILockBytes
CLSIDFromString
CoCreateInstance
CoCreateGuid
StringFromCLSID
CoTaskMemFree
CreateStreamOnHGlobal
CoGetMalloc
OleRun
ProgIDFromCLSID
OleRegGetUserType
CoTaskMemAlloc
OleGetAutoConvert
RevokeDragDrop
OleDuplicateData
RegisterDragDrop
CreateILockBytesOnHGlobal

comdlg32

GetFileTitleA

kernel32

FileTimeToSystemTime
CreateFiber
FindResourceExA
LocalAlloc
CompareStringW
GetProfileStringW
SetCommConfig
GetFileTime
UnlockFile
GetSystemTime
EnumResourceNamesW
VerLanguageNameW
IsDBCSLeadByte
GetFileAttributesA
LockFile
GetVersionExW
GetVolumeInformationW
FlushFileBuffers
SetEndOfFile
SearchPathW
GetUserDefaultLangID
FileTimeToLocalFileTime
FlushFileBuffers
GetFileType
GetSystemDirectoryW

comctl32

ImageList_Create
ImageList_DrawEx
ImageList_GetIconSize
ImageList_Add
ImageList_Destroy

rpcrt4

NdrClientCall
RpcBindingFromStringBindingA
RpcBindingSetAuthInfoA
RpcStringBindingComposeA
RpcStringFreeA

user32

MonitorFromWindow
SetScrollRange
CallNextHookEx
IsClipboardFormatAvailable
SetWindowPos
ClipCursor
SetWindowsHookExW
UnhookWindowsHookEx
DestroyCursor
SetClipboardData
DestroyIcon
ChildWindowFromPoint
DefWindowProcW
GetSysColorBrush
DrawEdge
ToAscii
WinHelpW
RegisterClassW
EmptyClipboard
GetSysColor

Sections

.text
Size: 183KB - Virtual size: 182KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3aa6da9c57231fe0010fc8db97d61606

Headers

File Characteristics

Imports

gdi32

shlwapi

ole32

comdlg32

kernel32

comctl32

rpcrt4

user32

Sections

.text Size: 183KB - Virtual size: 182KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 19KB - Virtual size: 19KB

.lib Size: 512B - Virtual size: 96KB

.text
Size: 183KB - Virtual size: 182KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 19KB - Virtual size: 19KB

.lib
Size: 512B - Virtual size: 96KB