95b7ad6cd1de25e7f3a7bdccda5bc445_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

95b7ad6cd1de25e7f3a7bdccda5bc445_JaffaCakes118
Size

94KB
MD5

95b7ad6cd1de25e7f3a7bdccda5bc445
SHA1

e7e6293386994ad24939cf77071c1764fdb76bce
SHA256

ed5f48434e7d8cf3b3bf40b0222e4f367267ed4506949549f8e1b0930418d08b
SHA512

1b287ae020390908924ae98ab9c9bdefc1e642f300ad0d159f46df540977bc31c9e89c3b9ff9c4c67c9b20c01527f4fdbdf972cbf2a8c083d23bee7307e7d1e5
SSDEEP

1536:t403DirRndBi7ReCk5ZEYtOEgvtCC307NMcelDMH0liQ4tVb8Dd+/Ks+euscUdAD:tv+ddc77kyHtCX7NJetMH00DIIifMi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
95b7ad6cd1de25e7f3a7bdccda5bc445_JaffaCakes118

Files

95b7ad6cd1de25e7f3a7bdccda5bc445_JaffaCakes118
.exe windows:5 windows x86 arch:x86

85ff91f64a04f8f2eaeec99bcc0c0808

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetDateFormatA
GetACP
QueryPerformanceCounter
UnhandledExceptionFilter
GetCurrentProcess
IsBadCodePtr
DisableThreadLibraryCalls
Sleep
GlobalFree
FindClose
GetStringTypeA
GetSystemTime
GetStartupInfoA
GetCurrentDirectoryA
ExitProcess
VirtualAllocEx
GetUserDefaultLCID
GetOEMCP
GetTickCount
WritePrivateProfileStringA
GetVersion
IsValidCodePage
GetCPInfo
DeleteFileW
OpenProcess
DuplicateHandle

shell32

SHGetPathFromIDListW
DragFinish
SHGetPathFromIDList
ShellExecuteA
ShellExecuteW
DragAcceptFiles
SHGetDesktopFolder
ExtractIconExA

advapi32

RegSetValueExA
InitializeSecurityDescriptor
CryptGenRandom
RegDeleteKeyA
AddAccessAllowedAce
SetSecurityDescriptorDacl
RegEnumValueW
CopySid

msvcrt

malloc
puts
strlen
vsprintf
_getch
localeconv
strcspn
calloc
iswspace

comctl32

ImageList_SetIconSize
ImageList_DrawEx
ImageList_GetIcon
ImageList_Create
DestroyPropertySheetPage
InitCommonControls
CreatePropertySheetPageA
CreateStatusWindowA
ImageList_SetImageCount

gdi32

Escape
CreateBrushIndirect
CreateEnhMetaFileA
SetBrushOrgEx
TextOutA
CreateRoundRectRgn
PolyDraw
PlayMetaFileRecord
SetROP2
GetViewportExtEx
SetViewportOrgEx
GetBkMode
CreateRectRgn
SetViewportExtEx
GetOutlineTextMetricsA
CreateDCW
GetTextFaceW
GetCharWidthA

user32

GetSysColor
EndPaint
ShowCursor
SendDlgItemMessageA
wsprintfA
UpdateWindow
SetWindowTextA
GetWindowRect

oleaut32

SafeArrayPtrOfIndex
SafeArrayCreate
VariantInit
LoadTypeLib
SetErrorInfo
GetActiveObject
SysFreeString
SysStringByteLen
SysReAllocStringLen
SafeArrayGetElement

ole32

StgOpenStorage
DoDragDrop
StringFromCLSID
CoCreateInstance
CoGetInterfaceAndReleaseStream
StgOpenStorageOnILockBytes
CreateStreamOnHGlobal
CoRegisterMessageFilter

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

85ff91f64a04f8f2eaeec99bcc0c0808

Headers

File Characteristics

Imports

kernel32

shell32

advapi32

msvcrt

comctl32

gdi32

user32

oleaut32

ole32

Sections

.text Size: 49KB - Virtual size: 49KB

.data Size: 30KB - Virtual size: 29KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 49KB - Virtual size: 49KB

.data
Size: 30KB - Virtual size: 29KB

.rsrc
Size: 14KB - Virtual size: 13KB