acbc664577c4c4e56be016497a7aa32b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

acbc664577c4c4e56be016497a7aa32b_JaffaCakes118
Size

604KB
MD5

acbc664577c4c4e56be016497a7aa32b
SHA1

2e0ea6a8eeabae58a26668c6ba6ffac5548b2569
SHA256

533990616c2f1c732df49941e9b514c88a64465b5de490a08dc8e8945e8e0eee
SHA512

dfc8392d5e9a3c760a8d557f19c0a382a545b0085722b4ab88f26b5538da6fff1fc4988d3735a7eb5f07a3f6d171aac6e2165f04395564871bb52f96c700b31f
SSDEEP

12288:+7bF2UdmpzNMl774OfiQ88jlGANyyfNu:EboUdmBN0n4jQnwyXV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
acbc664577c4c4e56be016497a7aa32b_JaffaCakes118

Files

acbc664577c4c4e56be016497a7aa32b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e07d225dd9d530f28b297eea27cfd088

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
GetLocalTime
GetCommandLineA
SetComputerNameA
SetStdHandle
SetEnvironmentVariableA
GetProcAddress
VirtualFree
InterlockedExchange
GetTimeZoneInformation
GetCurrentThread
GetStringTypeW
HeapDestroy
GetModuleHandleA
FormatMessageW
GetLocaleInfoA
WriteFile
InterlockedIncrement
OpenMutexA
OpenEventA
GetTickCount
CreateMutexA
TerminateProcess
TlsFree
GetStartupInfoW
InitializeCriticalSection
GetStdHandle
GetStringTypeA
IsBadWritePtr
GetEnvironmentStringsW
EnterCriticalSection
SetFilePointer
EnumCalendarInfoW
QueryPerformanceCounter
TlsSetValue
CompareStringA
GetModuleFileNameA
CloseHandle
LCMapStringW
IsValidLocale
UnhandledExceptionFilter
LCMapStringA
RtlUnwind
WriteConsoleInputA
DeleteCriticalSection
FlushFileBuffers
HeapAlloc
GetModuleFileNameW
GetCurrentProcessId
ExitProcess
FreeEnvironmentStringsA
HeapFree
HeapCreate
lstrlenA
FreeEnvironmentStringsW
LoadLibraryA
CompareStringW
GetStartupInfoA
GetSystemTimeAsFileTime
SetLastError
GetVersion
SetConsoleCP
GetEnvironmentStrings
VirtualAlloc
GetCPInfo
GetLastError
GetCommandLineW
LocalFree
GetCurrentProcess
InterlockedDecrement
WideCharToMultiByte
ReadFile
TlsAlloc
MultiByteToWideChar
TlsGetValue
SetHandleCount
GetFileType
HeapReAlloc
SetConsoleWindowInfo
GetSystemTime
VirtualQuery
GetCurrentThreadId

gdi32

GetBoundsRect
IntersectClipRect
SetROP2
ExtTextOutA
SetWorldTransform
CreateEllipticRgnIndirect
SetMetaFileBitsEx
GetStockObject
SetSystemPaletteUse
GetMetaRgn

user32

CopyRect
RegisterClassExA
CopyImage
LoadKeyboardLayoutW
AnyPopup
GetClassInfoExW
ShowWindow
ValidateRgn
DestroyMenu
GetWindowTextLengthA
SetMessageQueue
OpenWindowStationA
GetSystemMetrics
OemToCharBuffA
GetCursorInfo
GetMenuBarInfo
SystemParametersInfoW
SendIMEMessageExA
SystemParametersInfoA
SetRectEmpty
GetNextDlgTabItem
GetClassInfoExA
TranslateAcceleratorW
SetCursor
ScrollWindowEx
DefWindowProcW
GetClassWord
CheckDlgButton
LoadIconW
EnumDisplaySettingsW
SetDlgItemTextA
FrameRect
SetClipboardData
RegisterClassA
GetMenuStringA
MsgWaitForMultipleObjects
SetActiveWindow
IsCharUpperA
ChangeDisplaySettingsW
RemovePropW
IsCharAlphaW
DdeGetData
EnumDisplaySettingsExA
RemoveMenu
EndDialog
IsCharAlphaNumericA
FindWindowExA
GetSysColor
OffsetRect
WINNLSGetIMEHotkey
GetClipboardOwner
SetClipboardViewer
ArrangeIconicWindows
CharPrevW
CreateDesktopA
SetForegroundWindow
DlgDirSelectComboBoxExW
LoadMenuIndirectW
GetUpdateRgn
LoadCursorA
CreateWindowExA
TrackPopupMenu

advapi32

LookupPrivilegeValueA
RegReplaceKeyW
LogonUserA

comctl32

InitCommonControlsEx
ImageList_Replace
ImageList_LoadImageW
ImageList_GetImageInfo
ImageList_DragEnter
DestroyPropertySheetPage
DrawStatusTextW
DrawStatusText
ImageList_Copy
CreatePropertySheetPageW
GetEffectiveClientRect
ImageList_GetIconSize
ImageList_Draw
ImageList_SetDragCursorImage
CreateToolbar
ImageList_GetIcon
ImageList_Read
ImageList_Remove
ImageList_GetFlags
ImageList_GetBkColor
DrawInsert
ImageList_SetBkColor

wininet

FindFirstUrlCacheEntryExW
InternetSetDialStateW
FindFirstUrlCacheEntryA
SetUrlCacheEntryGroup

comdlg32

GetSaveFileNameA
ChooseColorA
PrintDlgW
ReplaceTextW

Sections

.text
Size: 176KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e07d225dd9d530f28b297eea27cfd088

Headers

File Characteristics

Imports

kernel32

gdi32

user32

advapi32

comctl32

wininet

comdlg32

Sections

.text Size: 176KB - Virtual size: 172KB

.rdata Size: 248KB - Virtual size: 245KB

.data Size: 116KB - Virtual size: 122KB

.rsrc Size: 60KB - Virtual size: 59KB

.text
Size: 176KB - Virtual size: 172KB

.rdata
Size: 248KB - Virtual size: 245KB

.data
Size: 116KB - Virtual size: 122KB

.rsrc
Size: 60KB - Virtual size: 59KB