a886669885f92b085c462396249d0546_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a886669885f92b085c462396249d0546_JaffaCakes118
Size

340KB
MD5

a886669885f92b085c462396249d0546
SHA1

3f2cb74fee9e9a1da609a31a04277fa2b12f399f
SHA256

7fbe906444be39bea2f5a4fe04fd6b3bde7c73ca0304ff7d951703a2d2c0bcc0
SHA512

64f5600e1c157bc60af44516f6611ee7dfebafa4389ea5ff1d4b175fd0340ccdab5d59ce613201e2638db139e724f9c9e620b1147749defb631a54d00f1710f8
SSDEEP

6144:Ps4QCbM3FcgoT3Y+jpBlPt8mgqG9jjhkaVD:cC3goT3VjHgTjhk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a886669885f92b085c462396249d0546_JaffaCakes118

Files

a886669885f92b085c462396249d0546_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2971c206ea6980e3f06979f72a89a789

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseFontW

shell32

SHQueryRecycleBinW
SHEmptyRecycleBinA
SHGetPathFromIDListW

comctl32

ImageList_GetImageInfo
InitCommonControlsEx
CreateMappedBitmap
ImageList_AddIcon
DrawInsert
ImageList_SetOverlayImage

kernel32

FreeEnvironmentStringsA
EnumSystemLocalesW
GetUserDefaultLCID
HeapFree
WriteConsoleA
WriteFileEx
VirtualUnlock
LeaveCriticalSection
VirtualQuery
TerminateProcess
WideCharToMultiByte
CreateNamedPipeA
SetConsoleCtrlHandler
GetTimeFormatA
HeapSize
EnumDateFormatsW
VirtualFree
MultiByteToWideChar
GetTimeZoneInformation
UnhandledExceptionFilter
LockResource
DeleteCriticalSection
GetEnvironmentVariableW
GetModuleFileNameW
CreateDirectoryExA
WritePrivateProfileStructW
GetProcessHeaps
InterlockedExchange
lstrcmpW
CreateMutexA
GetDiskFreeSpaceW
TlsGetValue
GetDateFormatA
lstrcmpA
FreeEnvironmentStringsW
FreeLibrary
GetSystemTimeAsFileTime
OpenMutexA
GetEnvironmentStrings
CreateFileW
VirtualQueryEx
GetCPInfo
ReadFileEx
GetLastError
GlobalHandle
DeleteAtom
FileTimeToSystemTime
MapViewOfFileEx
GetCommandLineA
Sleep
GetConsoleMode
SetHandleCount
FlushFileBuffers
LoadLibraryA
LCMapStringW
IsValidCodePage
LCMapStringA
CompareStringA
GetCurrentProcessId
GetTickCount
ExitProcess
GetTempPathW
OutputDebugStringW
GetACP
IsValidLocale
GetCommandLineW
GetCurrentProcess
lstrcat
WriteFile
GetFileType
FindResourceA
SetThreadIdealProcessor
ConnectNamedPipe
InterlockedIncrement
HeapCreate
GetStartupInfoW
CreateFileA
TlsFree
GetConsoleOutputCP
HeapDestroy
GetEnvironmentStringsW
RtlMoveMemory
HeapReAlloc
SetStdHandle
FindAtomA
InitializeCriticalSection
lstrcatW
InterlockedDecrement
GetTempFileNameA
WritePrivateProfileStructA
SetFilePointer
ExitThread
SetLastError
GetSystemDirectoryA
GetModuleHandleA
GetProcAddress
TransmitCommChar
OpenFile
GetStartupInfoA
MapViewOfFile
GetStringTypeW
GetStringTypeA
WriteConsoleW
GetProcessHeap
CreateWaitableTimerW
GetSystemInfo
GetVolumeInformationA
GetLocaleInfoW
DosDateTimeToFileTime
SetEnvironmentVariableA
GetCurrentThread
GetCurrentThreadId
ReadConsoleA
SetLocaleInfoW
GetThreadContext
WaitForMultipleObjectsEx
SystemTimeToFileTime
LocalFlags
GetVersionExA
EnumSystemLocalesA
EnterCriticalSection
MoveFileW
GetOEMCP
GetModuleFileNameA
GlobalReAlloc
GetStdHandle
SuspendThread
WriteConsoleInputW
CompareStringW
TlsAlloc
TlsSetValue
RtlUnwind
LoadModule
CreateMutexW
GetLocaleInfoA
CloseHandle
SetComputerNameW
GetConsoleCP
GetThreadTimes
ReadFile
VirtualAlloc
IsDebuggerPresent
QueryPerformanceCounter
WriteProfileStringW
HeapAlloc
SetUnhandledExceptionFilter

user32

GetDialogBaseUnits
RegisterClassExA
SendMessageTimeoutA
OffsetRect
SetWindowPlacement
OpenClipboard
CloseWindowStation
EnumDesktopsA
EnumPropsW
DlgDirListA
RegisterClassA
UnregisterClassA
GetMenuItemRect
ShowScrollBar
LoadBitmapA
IsDialogMessage
ChangeMenuA
SetWindowsHookW
DefWindowProcW
GetDlgItem
GetNextDlgGroupItem
ShowWindow
IsWindowVisible
DestroyWindow
GetClipboardOwner
CreateWindowExA
MessageBoxW
GetThreadDesktop
AttachThreadInput

Sections

.text
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 95KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2971c206ea6980e3f06979f72a89a789

Headers

File Characteristics

Imports

comdlg32

shell32

comctl32

kernel32

user32

Sections

.text Size: 152KB - Virtual size: 152KB

.rdata Size: 71KB - Virtual size: 70KB

.data Size: 95KB - Virtual size: 123KB

.rsrc Size: 20KB - Virtual size: 20KB

.text
Size: 152KB - Virtual size: 152KB

.rdata
Size: 71KB - Virtual size: 70KB

.data
Size: 95KB - Virtual size: 123KB

.rsrc
Size: 20KB - Virtual size: 20KB