8de239b8eb9bdd4e7f3a785c5a23811f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

8de239b8eb9bdd4e7f3a785c5a23811f_JaffaCakes118
Size

383KB
MD5

8de239b8eb9bdd4e7f3a785c5a23811f
SHA1

b2e15b021ab682b342ed49113acbbae3853201a0
SHA256

5e2a72f529d0903aaba10d20d24b916dccf1e5625b5f26b4ce8ee795a583761a
SHA512

cef96915241d41015538e6a447085d61cfb6ce9761e23df2b747a4a9627b4f1f032c2e6356289866351727d442f7747f81ba2328bd16893c25658f7021ccef72
SSDEEP

6144:v527DUJnZ2czGVKjN5drru+cbpXTPR7CGSjTwgE1diyTfVGDolgXjkolly:h27DUJnZ2cz/jNL8pV7m9sB7gXjhe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8de239b8eb9bdd4e7f3a785c5a23811f_JaffaCakes118

Files

8de239b8eb9bdd4e7f3a785c5a23811f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dc49189cb2a1df7c1a47fbb7ff0ac822

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFullPathNameA
_lcreat
lstrcmpW
SetStdHandle
GenerateConsoleCtrlEvent
GetProfileStringA
AddAtomW
CompareStringW
ConnectNamedPipe
GetModuleHandleA
FreeResource
CreateNamedPipeW
GetCurrentDirectoryA
ReadConsoleA
LeaveCriticalSection
VirtualProtect
InterlockedExchangeAdd
FindResourceW
VirtualFree
GlobalFindAtomW
GetCommandLineA
GetVersionExA
SetConsoleScreenBufferSize
GetStartupInfoA

user32

GetMenu
MessageBoxW
CallNextHookEx
SetRectEmpty
SetMenu
GetSystemMenu
GetDC
UnhookWindowsHook
InSendMessage
GetMessageTime
CopyAcceleratorTableW
EnableWindow
SetTimer
GetNextDlgTabItem
EnumThreadWindows
ModifyMenuW
CharLowerBuffW
LoadImageW
TranslateAcceleratorA
OffsetRect
SetClipboardData
GetTabbedTextExtentW
GetThreadDesktop
SetScrollRange
ChangeMenuA
TrackMouseEvent
TranslateMDISysAccel
GetWindowDC
IntersectRect
ChangeDisplaySettingsW
OpenWindowStationA
ClientToScreen
GetKeyboardState
CreateDesktopA
ActivateKeyboardLayout
InvalidateRgn
EndDeferWindowPos
UnregisterClassA
GetQueueStatus
ValidateRgn
GetTopWindow

gdi32

GetEnhMetaFileBits
EnumFontsA
SetTextAlign
GetBkMode
GetROP2
GetTextAlign
GetTextMetricsW

shell32

SHGetPathFromIDListA
SHGetSpecialFolderPathW
DragQueryPoint
ExtractAssociatedIconW

ole32

StgOpenStorageEx
OleRegGetUserType
OleCreateFromData
OleDestroyMenuDescriptor
OleGetClipboard
ReleaseStgMedium

oleaut32

RegisterTypeLi
DispGetIDsOfNames
SafeArrayPutElement
VariantClear
SysAllocStringLen
SetErrorInfo
SafeArrayCreate

comctl32

ord17
ImageList_Draw
ImageList_DragEnter
ImageList_SetDragCursorImage

shlwapi

PathAppendW
PathFindFileNameW
PathIsURLW
StrTrimW
StrCatW
PathFindNextComponentW
PathIsUNCW
PathStripPathA
PathRemoveArgsW
StrChrW
PathUndecorateW
PathParseIconLocationW
PathRemoveBlanksW
StrToIntExW
PathCombineA
StrTrimA
UrlGetPartW
StrFormatByteSize64A
PathIsFileSpecA

setupapi

SetupDiDeleteDeviceInfo
SetupOpenInfFileW
SetupGetLineCountA
SetupDiEnumDeviceInfo
SetupOpenLog
SetupDefaultQueueCallbackA
SetupGetLineTextW

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

Sections

.text
Size: 264KB - Virtual size: 263KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dc49189cb2a1df7c1a47fbb7ff0ac822

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

oleaut32

comctl32

shlwapi

setupapi

msvcrt

Sections

.text Size: 264KB - Virtual size: 263KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 111KB - Virtual size: 111KB

.text
Size: 264KB - Virtual size: 263KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 111KB - Virtual size: 111KB