a29b612721278ec67772a9d463985cee_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a29b612721278ec67772a9d463985cee_JaffaCakes118
Size

146KB
MD5

a29b612721278ec67772a9d463985cee
SHA1

e826c09351177aa56893aebf1eb50e3bbfc246d6
SHA256

d641823c87ce9b8247cd5a8e187ac39a1de06b35781d2c1a78a25a842ac7ad96
SHA512

24273c2eded84a7c317578e6755d759f5ffb260e769abd6754a80b414030cfead7ec42f17d145ff1b197c14611ac8c62c73bf3766b18345d2d7a1c57688baad6
SSDEEP

1536:0HWcxZUzbMTyOBuNzlZnHVXdPHBGwE8RpHyE0gv7yyBnZDPqXyxBB2e6aG:0HWc3v2CuNPPHzyE00yyrTq8r6aG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a29b612721278ec67772a9d463985cee_JaffaCakes118

Files

a29b612721278ec67772a9d463985cee_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f2be1621381a33116130e468ef0d1465

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExA
SetConsoleWindowInfo
WritePrivateProfileSectionW
PulseEvent
GetTapeParameters
WritePrivateProfileStringA
GetProcessTimes
GetConsoleCursorInfo
GetHandleInformation
SetSystemTime
PeekNamedPipe
ReleaseMutex
VirtualUnlock
EnumDateFormatsW
GetLocaleInfoW
IsValidLocale
SystemTimeToFileTime
GetCurrentProcessId
SetConsoleMode
SetThreadPriorityBoost
LocalSize
VirtualLock
GetAtomNameA
CompareStringA
lstrcpyA
CreatePipe
GetModuleHandleA
SizeofResource
LocalFileTimeToFileTime
SetConsoleCursorPosition
CreateEventA
ExpandEnvironmentStringsW
SearchPathW
SetEnvironmentVariableW
SetNamedPipeHandleState
SetConsoleActiveScreenBuffer
WaitNamedPipeA
FreeLibraryAndExitThread
IsDBCSLeadByteEx
SetThreadLocale
SetThreadAffinityMask
SetProcessShutdownParameters
CreateDirectoryW
GetTempPathW
EndUpdateResourceA
SetProcessAffinityMask
CreateMutexW
FlushConsoleInputBuffer
GetTimeZoneInformation
EnumResourceLanguagesW
IsBadStringPtrA
InitializeCriticalSection
GetThreadPriority
IsBadReadPtr
EnumCalendarInfoW
GlobalFlags
GetSystemDirectoryW
DeleteCriticalSection
FindFirstFileW
GetSystemInfo
MoveFileW
GlobalFree
EnumResourceNamesW
WriteConsoleOutputCharacterA
CompareStringW
GetLogicalDriveStringsA
FlushFileBuffers
GetModuleFileNameW
ConnectNamedPipe
GetPrivateProfileStringA
CreateNamedPipeW
GetFileInformationByHandle
ReadConsoleA
FindNextChangeNotification
VirtualFree
RemoveDirectoryW
TryEnterCriticalSection
CreateWaitableTimerA
GetCPInfo
GetStringTypeExW
FreeEnvironmentStringsA
UnmapViewOfFile
GetConsoleMode
GetVersion
SetProcessWorkingSetSize
GetCommandLineA
VirtualAlloc
GetSystemTimeAsFileTime
ExitProcess

user32

PostThreadMessageW
IsCharAlphaNumericW
ShowScrollBar
MapWindowPoints
GetClientRect
SystemParametersInfoW
ShowWindow
OemToCharA
GetClassNameA
GetCursor
SwapMouseButton
CharLowerW
CharLowerBuffW
InflateRect
SetMenu
EnumWindows
SetWindowsHookW
ChangeMenuW
LoadMenuIndirectA
GetKeyboardLayoutNameW
GetTabbedTextExtentA
SetSysColors
HideCaret
SetWindowPlacement
DrawIcon
CreateMDIWindowW
IsRectEmpty
GetClipboardViewer
EnumDisplaySettingsA
BeginPaint
GetThreadDesktop
CallWindowProcA
ClipCursor
SetWindowTextW
CharToOemA

gdi32

CreateDCW
SetPaletteEntries
EnumFontFamiliesA
SetBitmapBits
CreateEllipticRgn
GetWindowExtEx
StretchDIBits
GetDeviceCaps
ChoosePixelFormat
StrokeAndFillPath
PatBlt
ScaleWindowExtEx
ExtCreatePen
GetViewportExtEx
CreateDIBPatternBrushPt
PlayEnhMetaFileRecord
CreateSolidBrush
SetWorldTransform
DPtoLP
SetTextAlign
GetFontLanguageInfo

comdlg32

CommDlgExtendedError

advapi32

CreatePrivateObjectSecurity
GetServiceDisplayNameA
UnlockServiceDatabase
ObjectCloseAuditAlarmW
EqualSid
AddAccessDeniedAce
CryptDestroyHash

ole32

OleInitialize
PropVariantCopy
CoTreatAsClass
CoGetClassObject
CoMarshalInterface
OleSetContainedObject

oleaut32

VariantCopy
VariantChangeType
SafeArrayGetLBound
SafeArrayRedim
SetErrorInfo

shlwapi

PathRelativePathToA
PathRenameExtensionW
PathUnquoteSpacesW
SHRegCreateUSKeyW
UrlGetPartA
PathIsPrefixW
PathIsURLW
StrFormatKBSizeW
StrCatBuffA
StrChrIW
StrRChrA
AssocCreate

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 280KB - Virtual size: 279KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f2be1621381a33116130e468ef0d1465

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

shlwapi

Sections

.text Size: 4KB - Virtual size: 2KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 280KB - Virtual size: 279KB

.text
Size: 4KB - Virtual size: 2KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 280KB - Virtual size: 279KB