969480a141de2f2e7ddb3f42e9fc57bd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

969480a141de2f2e7ddb3f42e9fc57bd_JaffaCakes118
Size

52KB
MD5

969480a141de2f2e7ddb3f42e9fc57bd
SHA1

7160f05d11ccda86c2e72369b80e8cd905d67f4c
SHA256

4c3f08c317c29383f26b31081bd8606999e6a019dc701b0566e2540c0f744fab
SHA512

c9c9496db9955fc73496072080e1ff911f5ac0a77b9df4bb733a9147af411515c1fcaf109fa50a1f8f66b9d34b8f133f0fc92186425e3477fd8180740e66ee39
SSDEEP

1536:d3ZTqy6XfUMkgk9nBwpXUx+kdwmcnSMMyzm2+vSESPkdtPhy:FsDXc39B4kFwmcnSM/aRSPkrI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
969480a141de2f2e7ddb3f42e9fc57bd_JaffaCakes118

Files

969480a141de2f2e7ddb3f42e9fc57bd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

583a19ac578f0251edea3f765bc705b2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitialize
CoReleaseServerProcess
CoFreeLibrary
OleCreateEmbeddingHelper
CoRevokeClassObject
OleIsRunning
OleCreateLinkFromData
CoFreeUnusedLibraries
OleSave
CoSuspendClassObjects
OleFlushClipboard
CoGetCurrentProcess
CoTreatAsClass
CoFileTimeToDosDateTime
CoResumeClassObjects
CoDosDateTimeToFileTime
BindMoniker
CoFreeAllLibraries
OleCreateMenuDescriptor

gdi32

MoveToEx
DeleteDC
GetTextExtentPoint32A
SaveDC
StartDocA
GetTextMetricsA
CreateFontIndirectA
SetTextColor
Rectangle
SetBkColor
CreateDIBSection
GetBkColor
StartPage
RectInRegion
GetStockObject
SetTextAlign
GetDeviceCaps
CreateSolidBrush
GetObjectA
CreatePen

msvcrt

abs
_initterm
wcsncmp
_stricmp
strrchr
_snwprintf
fprintf
wcscat
__getmainargs
_splitpath
free
_beginthreadex
iswctype
memcmp
_fullpath
_beginthread
_itoa
wcsstr
_exit
_access

user32

GetSysColor
GetWindowLongA
FrameRect
GetParent
SetForegroundWindow
ShowScrollBar
DrawEdge
GetMenuCheckMarkDimensions
SetFocus
BeginPaint
GetSubMenu
ClientToScreen
FillRect
CheckDlgButton
IntersectRect
BeginDeferWindowPos
FindWindowA
TranslateAcceleratorA
GetDlgItemTextA
EndPaint
DrawFrameControl
GetKeyState
SetDlgItemTextA
GetWindowThreadProcessId
InsertMenuA
OpenClipboard

advapi32

RegSetValueExA
InitializeAcl
OpenServiceA
GetKernelObjectSecurity
QueryServiceObjectSecurity
RegCreateKeyExA
AddAce
LookupAccountNameA
RegDeleteValueA
GetSidSubAuthority
RegConnectRegistryA
QueryServiceConfigA
GetLengthSid
RegCreateKeyA
IsValidSid
StartServiceA
AllocateAndInitializeSid
ControlService

kernel32

GetTickCount
SetEnvironmentVariableA
HeapSize
GetCurrentProcess
LoadResource
HeapDestroy
lstrcpynA
CreateProcessA
TlsFree
WaitForSingleObject
InitializeCriticalSection
HeapFree
TerminateProcess
GetLocaleInfoA
FindFirstFileA
GetVersionExA

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 809B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 470B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

583a19ac578f0251edea3f765bc705b2

Headers

File Characteristics

Imports

ole32

gdi32

msvcrt

user32

advapi32

kernel32

Sections

.text Size: 47KB - Virtual size: 46KB

.data Size: 2KB - Virtual size: 70KB

.rdata Size: 1024B - Virtual size: 809B

.rsrc Size: 1024B - Virtual size: 960B

.reloc Size: 512B - Virtual size: 470B

.text
Size: 47KB - Virtual size: 46KB

.data
Size: 2KB - Virtual size: 70KB

.rdata
Size: 1024B - Virtual size: 809B

.rsrc
Size: 1024B - Virtual size: 960B

.reloc
Size: 512B - Virtual size: 470B