abc43460c059c3e165aae3e51ae105b9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

abc43460c059c3e165aae3e51ae105b9_JaffaCakes118
Size

207KB
MD5

abc43460c059c3e165aae3e51ae105b9
SHA1

99bc576e1d4ba8504e84fd1c4e3942c0f2066a5e
SHA256

211477a3362751ce48420d0c8aca3d50b25931de166387343b6d53d6ba5d70b8
SHA512

24db1a127fd36caeab1802ed6450dad5849bc9505e85aa98c6a525ad4447300e88db7ee5bd3a620f12b2979a811b07b2712b65944244343f2a64abb2772f1b1b
SSDEEP

6144:xe2/+pk3K2Ffy99yvqHZm4lmoz/Fs3YG:xe2/Ck3fVumChG3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abc43460c059c3e165aae3e51ae105b9_JaffaCakes118

Files

abc43460c059c3e165aae3e51ae105b9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b755f8df099a771abcf9ea6fbecdb0f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

ExtCreatePen
AnimatePalette
PlgBlt
FlattenPath
RoundRect
StrokePath
GetBitmapBits
SetTextColor
CreateFontIndirectA
CreatePen
GetPath
PolyBezier
GetBkColor
SetStretchBltMode
SetDIBits

kernel32

FileTimeToSystemTime
SetEndOfFile
CreateFiber
FindResourceExA
FlushFileBuffers
GetVersionExW
SetCommConfig
UnlockFile
GetVolumeInformationW
CompareStringW
EnumResourceNamesW
SearchPathW
VerLanguageNameW
LockFile
GetFileAttributesA
GetSystemTime
GetFileTime
FlushFileBuffers
GetProfileStringW
LocalAlloc
GetFileType
GetUserDefaultLangID
FileTimeToLocalFileTime
IsDBCSLeadByte
GetSystemDirectoryW

user32

DrawEdge
ClipCursor
GetSysColorBrush
SetWindowsHookExW
IsClipboardFormatAvailable
UnhookWindowsHookEx
RegisterClassW
WinHelpW
MonitorFromWindow
ToAscii
DestroyIcon
ChildWindowFromPoint
SetScrollRange
DestroyCursor
SetWindowPos
CallNextHookEx
DefWindowProcW
EmptyClipboard
SetClipboardData
GetSysColor

comdlg32

GetFileTitleA

shlwapi

PathStripToRootW
PathIsURLW
PathIsRootW
PathCanonicalizeW
PathIsRelativeW
PathCombineW

comctl32

ImageList_Add
ImageList_GetIconSize
ImageList_Create
ImageList_DrawEx
ImageList_Destroy

rpcrt4

RpcBindingSetAuthInfoA
NdrClientCall
RpcBindingFromStringBindingA
RpcStringBindingComposeA
RpcStringFreeA

ole32

ProgIDFromCLSID
CoGetMalloc
OleRegGetUserType
OleDuplicateData
StgCreateDocfileOnILockBytes
CoTaskMemFree
StgOpenStorageOnILockBytes
OleGetAutoConvert
GetHGlobalFromStream
CoTaskMemAlloc
CoCreateGuid
CreateStreamOnHGlobal
RevokeDragDrop
StringFromCLSID
CoCreateInstance
CLSIDFromString
ReleaseStgMedium
OleRun
CLSIDFromProgID
GetHGlobalFromILockBytes
CoFreeUnusedLibraries
RegisterDragDrop
CoGetClassObject
CreateILockBytesOnHGlobal

Sections

.text
Size: 181KB - Virtual size: 181KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b755f8df099a771abcf9ea6fbecdb0f4

Headers

File Characteristics

Imports

gdi32

kernel32

user32

comdlg32

shlwapi

comctl32

rpcrt4

ole32

Sections

.text Size: 181KB - Virtual size: 181KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 21KB - Virtual size: 20KB

.lib Size: 512B - Virtual size: 92KB

.text
Size: 181KB - Virtual size: 181KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 21KB - Virtual size: 20KB

.lib
Size: 512B - Virtual size: 92KB