a8c69d0a61bfdf0aa32e716bba227011_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a8c69d0a61bfdf0aa32e716bba227011_JaffaCakes118
Size

213KB
MD5

a8c69d0a61bfdf0aa32e716bba227011
SHA1

16986850481a6c48c9a907804029685886e73ece
SHA256

767ef1586b222995a9ed7e9d2677eee9bb96e90520dfd70f3d84bf669f2d94c7
SHA512

549116735b4f9b3304d0ee4d246b3d36a010e9d5852c3d587bc976655d84f8a4fdb5d5caf2aaabf47bc7be0e12e3777f1cb3363ff10f383ef9ee3f0df88ae40b
SSDEEP

6144:1LB4IDzcL4xbd1BeReKc9GmTb5avnK8Q1MJ:5Dzc0xpTeRpc4mv5z8NJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a8c69d0a61bfdf0aa32e716bba227011_JaffaCakes118

Files

a8c69d0a61bfdf0aa32e716bba227011_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4cd2ba3f44a50f610edc33cd80101711

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
CreateFileA
DisableThreadLibraryCalls
FindNextFileW
FindResourceW
GetEnvironmentStrings
GetFileSize
GetPrivateProfileStringA
GetThreadLocale
GetVersion
GlobalReAlloc
InitializeCriticalSection
LoadLibraryExW
MoveFileA
ReleaseMutex
ResetEvent
WaitForMultipleObjects
lstrcmpA
lstrcmpiW
lstrlenA

shell32

CommandLineToArgvW
ExtractIconExW
SHAddToRecentDocs
SHAppBarMessage
SHBindToParent
SHBrowseForFolderA
SHBrowseForFolderW
SHCreateDirectoryExW
SHFileOperationA
SHGetDesktopFolder
SHGetDiskFreeSpaceExW
SHGetFileInfo
SHGetFileInfoW
SHGetFolderPathW
SHGetPathFromIDListA
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetSpecialFolderPathA
ShellExecuteA
ShellExecuteExA
ShellExecuteExW

user32

AdjustWindowRectEx
CharNextA
DefWindowProcA
DeleteMenu
DrawIcon
EnableWindow
EndDialog
GetForegroundWindow
GetIconInfo
GetPropA
GetWindowLongA
LoadBitmapA
MessageBoxA
OffsetRect
RegisterClassA
ScreenToClient
ScrollWindow
SetTimer
wsprintfA

gdi32

ArcTo
CreateRectRgnIndirect
CreateSolidBrush
DPtoLP
EndDoc
GetBkMode
GetDIBColorTable
GetNearestPaletteIndex
GetObjectW
GetPaletteEntries
GetPixel
GetTextFaceA
GetTextMetricsW
GetViewportExtEx
IntersectClipRect
LPtoDP
OffsetViewportOrgEx
PolylineTo
PtInRegion
RectInRegion
RectVisible
SelectPalette
SetAbortProc
SetDIBColorTable
SetPolyFillMode
SetViewportOrgEx
SetWindowOrgEx
StrokeAndFillPath
StrokePath

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

e0XsJ1LJ
Size: 2KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4cd2ba3f44a50f610edc33cd80101711

Headers

File Characteristics

Imports

kernel32

shell32

user32

gdi32

Sections

.text Size: 89KB - Virtual size: 89KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 99KB - Virtual size: 99KB

.rsrc Size: 18KB - Virtual size: 17KB

e0XsJ1LJ Size: 2KB - Virtual size: 120KB

.text
Size: 89KB - Virtual size: 89KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 99KB - Virtual size: 99KB

.rsrc
Size: 18KB - Virtual size: 17KB

e0XsJ1LJ
Size: 2KB - Virtual size: 120KB