a1318db62630337987bcd68572fca234_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a1318db62630337987bcd68572fca234_JaffaCakes118
Size

192KB
MD5

a1318db62630337987bcd68572fca234
SHA1

b5ca16307766254628164accb7d8b2b265b90ded
SHA256

150949158432f4421fd06fc57b60801c373d88bbe4b29f7ba0df9ae1773b4e4d
SHA512

54170020e8c246bb3ab46a1231f870b1ed548c401f32b2003d60610046687680768881615ff4f6413032ab3bd90dc50a09f77249b1051cc0b96ef7ec7f7a4de3
SSDEEP

3072:HXyUmqhbAFIxSAzUy9H3U65/PYLoHHgDo6NUD+ScW/6NQr81eSNg:HXrxBIIxSAzUytT5/PGuAQD+j+cQg1eS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a1318db62630337987bcd68572fca234_JaffaCakes118

Files

a1318db62630337987bcd68572fca234_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b07385227ab7fab4ff15bfca1cbd2f44

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLongPathNameW
ReadFile
GlobalFree
SetFilePointer
DisableThreadLibraryCalls
LocalFree
WriteFile
GetProcessHandleCount
GlobalSize
GlobalAlloc
CreateFileW
GetFileSize
EnumResourceTypesA
GetTickCount
CreateFileA
GetFileAttributesA
LocalAlloc
UnmapViewOfFile
CreateFileMappingA
Sleep
WideCharToMultiByte
MapViewOfFile
CloseHandle

advapi32

CryptDestroyHash
RegQueryValueExA
CryptReleaseContext
CryptAcquireContextA
RegSetValueExA
CryptImportKey
CryptDestroyKey
RegEnumValueA
CryptGetHashParam
RegQueryInfoKeyA
CryptEncrypt
CryptCreateHash
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyExA
RegCloseKey
CryptHashData
RegCreateKeyExA
RegDeleteKeyA

shlwapi

PathFileExistsW
PathCombineW

user32

GetQueueStatus
PostThreadMessageA
SetWindowLongA
PeekMessageA
DrawTextA
GetWindow
GetClassInfoExA
CopyRect
GetClientRect
wsprintfA
SetParent
GetParent
GetSysColor
GetFocus
GetWindowRect
BeginPaint
UnregisterClassA
FillRect
IsChild
SetRect
IsWindow
DestroyWindow
SetFocus
SendMessageTimeoutA
EnumDisplayDevicesA
MsgWaitForMultipleObjects
GetWindowLongA
ReleaseDC
GetActiveWindow
wvsprintfA
KillTimer
InvalidateRgn
SetCapture
FindWindowA
MoveWindow
RedrawWindow
ReleaseCapture
ShowWindow
GetDlgItem
InvalidateRect
LoadCursorA
CreateAcceleratorTableA
EqualRect
DefWindowProcA
DestroyAcceleratorTable
PostMessageA
CreateWindowExA
DispatchMessageA
GetWindowTextLengthA
CreateDialogParamA
RegisterClassExA
SetTimer
EndPaint
GetDC
GetWindowTextA
GetDesktopWindow
SendMessageA
RegisterWindowMessageA
CallWindowProcA
SetWindowTextA
CharNextA
SendNotifyMessageA
GetClassNameA
SetWindowPos

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

ole32

CoTaskMemAlloc
CoCreateInstance
GetRunningObjectTable
CoTaskMemFree
OleLockRunning
CoInitialize
OleUninitialize
CoInitializeSecurity
CoGetClassObject
CoUninitialize
StringFromGUID2
CreateItemMoniker
OleInitialize
CoTaskMemRealloc
StgIsStorageFile
StgOpenStorage
BindMoniker
CreateStreamOnHGlobal
CreateBindCtx
CLSIDFromProgID
StgCreateDocfile
CoSetProxyBlanket
CLSIDFromString

wininet

InternetReadFile
InternetOpenA
InternetOpenUrlA
InternetCloseHandle

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

gdi32

GetDeviceCaps
SelectObject
CreateFontA
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC
GetDIBits
RealizePalette
CreateDIBitmap
GetObjectA
DeleteObject
CreateSolidBrush
StretchDIBits
GetStockObject
BitBlt
ExtEscape
SelectPalette
SetStretchBltMode
CreateDIBSection
SetBkMode

Sections

.text
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b07385227ab7fab4ff15bfca1cbd2f44

Headers

File Characteristics

Imports

kernel32

advapi32

shlwapi

user32

shell32

ole32

wininet

setupapi

gdi32

Sections

.text Size: 105KB - Virtual size: 105KB

.rdata Size: 4KB - Virtual size: 4KB

.bss Size: 80KB - Virtual size: 79KB

.tls Size: 1024B - Virtual size: 112KB

.text
Size: 105KB - Virtual size: 105KB

.rdata
Size: 4KB - Virtual size: 4KB

.bss
Size: 80KB - Virtual size: 79KB

.tls
Size: 1024B - Virtual size: 112KB