a28b3503527932b72557841edada0db6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a28b3503527932b72557841edada0db6_JaffaCakes118
Size

184KB
MD5

a28b3503527932b72557841edada0db6
SHA1

9fd14c36321d6a8e49211d9f3e2d06550a2be99e
SHA256

966ae614242e5af03b8f546cb8d03fd5d45e97357c102a8514f6af5d7ee50247
SHA512

f99e6539259327b4b525dad3439f4423fb4a4c0f84310dedeec543132e19f5ff048f9efd9a20317dcdedadf1b396d0fa0f5d96c8da9b2758074b551e21a6d19a
SSDEEP

3072:m8WnLuLGXO8MKlOXr+/i/+nxDwuwXbQLNaVP2IeRKllB9hN05q:VWL6Zbr+qGnZwuwkxPI4KllB9hV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a28b3503527932b72557841edada0db6_JaffaCakes118

Files

a28b3503527932b72557841edada0db6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a2cabec7602b61d80b2b16c633d20111

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

gdi32

SaveDC
DeleteDC
CreateBitmap
GetWindowExtEx
TextOutW
GetClipBox
PtVisible
ExtTextOutW
ScaleViewportExtEx
ExtSelectClipRgn
SelectObject
SetViewportExtEx
GetRgnBox
GetStockObject
GetBkColor
SetViewportOrgEx
RestoreDC
GetViewportExtEx
GetDeviceCaps
OffsetViewportOrgEx
SetBkColor
SetTextColor
Escape
GetMapMode
SetMapMode
DeleteObject
RectVisible
SetWindowExtEx
ScaleWindowExtEx
GetObjectW
GetTextColor
CreateRectRgnIndirect

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

ole32

CoCreateInstance
CoInitialize
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromProgID
CoRevokeClassObject
StgCreateDocfileOnILockBytes
OleInitialize
CreateILockBytesOnHGlobal
CoRegisterMessageFilter
CoGetClassObject
CoFreeUnusedLibraries
OleFlushClipboard
OleUninitialize
OleIsCurrentClipboard
CoUninitialize
StgOpenStorageOnILockBytes
CLSIDFromString

kernel32

GetLocaleInfoW
VirtualFree
SizeofResource
GetCalendarInfoA
EnumResourceLanguagesW
CloseHandle
DeleteFileW
MoveFileW
FindClose
InitializeCriticalSection
CreateFileW
RemoveDirectoryW
GetModuleFileNameW
lstrcpyW
WideCharToMultiByte
GetACP
SystemTimeToFileTime
WaitForSingleObject
SetThreadContext
LockResource
CreateMutexW
InterlockedExchange
GetCurrentDirectoryW
ReleaseMutex
FindNextFileW
MultiByteToWideChar
EnumResourceNamesA
FindFirstFileW
GetProcAddress
CreateDirectoryW
LoadResource
SetFilePointer
FindResourceW
GetFileAttributesW
ReadFile
WriteFile
GetCurrentProcessId
GetVersionExW
GetVersion
ExitProcess
GetLocaleInfoA
ConvertDefaultLocale
LoadLibraryW
SetFileTime
GetThreadLocale
lstrcmpiA
FreeLibrary
GetSystemDefaultLangID
RaiseException
DeleteCriticalSection
LocalFileTimeToFileTime
GetModuleHandleW
InterlockedDecrement
lstrcmpA

user32

GetTopWindow
RegisterWindowMessageW
SendDlgItemMessageA
SetActiveWindow
GetNextDlgGroupItem
GetMessageTime
IntersectRect
GetWindowPlacement
WinHelpW
OffsetRect
UpdateWindow
EqualRect
LoadIconW
InvalidateRect
IsWindow
DefWindowProcW
GetMessagePos
SetRect
AdjustWindowRectEx
GetClientRect
GetClassInfoExW
MapWindowPoints
IsRectEmpty
CharUpperW
RegisterClassW
InvalidateRgn
IsIconic
IsChild
CreateWindowExW
CharNextW
GetForegroundWindow
CopyAcceleratorTableW
GetClassLongW
SetForegroundWindow
GetMenu
GetClassInfoW
SetPropW
GetNextDlgTabItem
GetPropW
CallWindowProcW
MessageBeep
RemovePropW
DestroyMenu

oledlg

OleUIBusyW

advapi32

RegQueryInfoKeyW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyExW
RegEnumKeyExW
RegQueryValueW
RegCreateKeyExW
RegCloseKey
RegOpenKeyW
RegSetValueExW
RegQueryValueExW

shlwapi

PathFindExtensionW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW
PathFileExistsW
PathFindFileNameW
PathAppendW

Sections

.text
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a2cabec7602b61d80b2b16c633d20111

Headers

File Characteristics

Imports

shell32

gdi32

comdlg32

winspool.drv

ole32

kernel32

user32

oledlg

advapi32

shlwapi

Sections

.text Size: 99KB - Virtual size: 99KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 77KB - Virtual size: 77KB

.edata Size: 1024B - Virtual size: 240KB

.text
Size: 99KB - Virtual size: 99KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 77KB - Virtual size: 77KB

.edata
Size: 1024B - Virtual size: 240KB