ad3b426e32d0cf6f9035e23d9bd7bbcd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ad3b426e32d0cf6f9035e23d9bd7bbcd_JaffaCakes118
Size

372KB
MD5

ad3b426e32d0cf6f9035e23d9bd7bbcd
SHA1

40d36d0cf77b1920f09fa1fec5e42480b1f954f2
SHA256

ffe35dbacf0b07ef779bc763391a17bdaaefa7d4a50ca331f0f7d09dfde730c2
SHA512

0cf8c846fff5714637eb7efbf4acfaed6ac3c36cbf1bf7fedf65f44ced0548333281a291518cf9098387a20536bd65702870066dbc4ad15ec66444391628c4f5
SSDEEP

6144:kTBjWVqKMWhkAFBsW/SykasB9LrXfiai8iEbh/VGCv:Kj5WXjsWayka493XqaViEbh/VGu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ad3b426e32d0cf6f9035e23d9bd7bbcd_JaffaCakes118

Files

ad3b426e32d0cf6f9035e23d9bd7bbcd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2e41bc250611688ca431334b9cb968d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
ReadConsoleInputW
GetEnvironmentStrings
GetLocaleInfoA
OpenMutexA
SetLastError
CreatePipe
GetACP
GetCommandLineA
TlsSetValue
HeapReAlloc
GetLastError
MultiByteToWideChar
IsValidLocale
CreateMutexA
VirtualProtect
LeaveCriticalSection
GetEnvironmentStringsW
GetProcessAffinityMask
GetSystemDirectoryA
IsValidCodePage
GetCurrentThreadId
GetCurrentProcessId
GetModuleHandleA
InitializeCriticalSection
IsBadWritePtr
WideCharToMultiByte
FlushFileBuffers
HeapCreate
EnterCriticalSection
GetDateFormatA
GetTimeZoneInformation
VirtualAlloc
VirtualFree
HeapFree
SetHandleCount
GetUserDefaultLCID
HeapSize
CompareStringA
ExitProcess
GetStringTypeW
GetModuleFileNameA
TlsGetValue
GetSystemInfo
GetFileType
GetVersionExA
EnumSystemLocalesA
GetStartupInfoA
VirtualQuery
TlsAlloc
TerminateProcess
SetFilePointer
GetLocaleInfoW
CloseHandle
QueryPerformanceCounter
LCMapStringA
HeapAlloc
RtlUnwind
SetStdHandle
GetTickCount
WriteFile
GetStdHandle
FreeEnvironmentStringsA
UnhandledExceptionFilter
LoadLibraryA
GetCurrentThread
GetSystemTimeAsFileTime
SetEnvironmentVariableA
GetStringTypeA
CompareStringW
TlsFree
LCMapStringW
InterlockedExchange
FreeEnvironmentStringsW
GetProcAddress
VirtualProtectEx
GetTimeFormatA
HeapDestroy
GetCurrentProcess
ReadFile
DeleteCriticalSection
GetCPInfo

gdi32

UpdateICMRegKeyA
EnumFontsW
AbortPath
GetFontData
Ellipse
CreateICA
SetDeviceGammaRamp
GetGraphicsMode
ExtCreatePen
GetObjectA
ExtEscape
CreateDCW
RoundRect
SetLayout
SelectPalette
GetTextMetricsA
GetTextCharsetInfo
PtVisible
GetPixel
CreateEllipticRgnIndirect
CreateDiscardableBitmap
DeleteDC
ResetDCW
EnumICMProfilesW
ExcludeClipRect
GetDeviceCaps

shell32

RealShellExecuteA
SHInvokePrinterCommandW

user32

PeekMessageA
OpenWindowStationW
EnumPropsA
CharToOemBuffA
ShowScrollBar
CountClipboardFormats
KillTimer
SetDlgItemTextW
SetShellWindow
CreateDialogIndirectParamW
LoadBitmapW
SetWindowPos
MessageBoxW
MessageBoxA
ModifyMenuA
LoadStringW
CharUpperA
GetMenuBarInfo
DefFrameProcA
wsprintfW
VkKeyScanA
ReleaseDC
DefWindowProcA
FlashWindowEx
GetClassInfoExW
SwapMouseButton
MessageBeep
BeginDeferWindowPos
InsertMenuItemA
RegisterClassA
GetMenuItemInfoW
SetUserObjectSecurity
FindWindowExW
DestroyWindow
MapVirtualKeyExA
GetListBoxInfo
IntersectRect
CreateWindowStationA
GetWindowWord
EndDialog
MessageBoxIndirectA
GetWindowTextW
GetUserObjectInformationA
EnumThreadWindows
CopyImage
SetWindowLongA
GetInputState
SetParent
EnumWindowStationsW
PostMessageW
RegisterClassExA
SetCaretBlinkTime
GetClipboardViewer
CloseDesktop
GetClassInfoExA
ShowWindow
GetCursorPos
VkKeyScanExA
GetKeyboardLayoutNameW
GetMenu
GetScrollInfo
CharToOemA
GetMessageW
CreateWindowExW
GetClipboardFormatNameA
EnumDisplaySettingsA
GetAncestor
GetClipboardFormatNameW
RemoveMenu
InsertMenuA
SetMessageExtraInfo
InvalidateRgn
GetDesktopWindow
OffsetRect
DefMDIChildProcW
IsDialogMessageA
PtInRect
CreateAcceleratorTableA
RegisterWindowMessageW
GetKeyboardState
CreateWindowExA
DdeDisconnectList
CreateDesktopA
LoadAcceleratorsA
WindowFromPoint
WINNLSEnableIME
LockWindowUpdate
CharPrevExA
DlgDirSelectComboBoxExA
DdeDisconnect
SetMenuItemInfoW
CreatePopupMenu
BringWindowToTop
SetDlgItemTextA
GetMenuState
SendDlgItemMessageA
RegisterDeviceNotificationA
SetWindowTextW
DdeQueryStringW

comctl32

InitCommonControlsEx
ImageList_DragEnter
ImageList_DrawEx
ImageList_Remove
CreatePropertySheetPage
CreateStatusWindow
ImageList_SetIconSize

Sections

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e41bc250611688ca431334b9cb968d9

Headers

File Characteristics

Imports

kernel32

gdi32

shell32

user32

comctl32

Sections

.text Size: 156KB - Virtual size: 155KB

.rdata Size: 92KB - Virtual size: 89KB

.data Size: 96KB - Virtual size: 126KB

.rsrc Size: 24KB - Virtual size: 22KB

.text
Size: 156KB - Virtual size: 155KB

.rdata
Size: 92KB - Virtual size: 89KB

.data
Size: 96KB - Virtual size: 126KB

.rsrc
Size: 24KB - Virtual size: 22KB