affe36f06b8eb92752592e9c61886dba_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

affe36f06b8eb92752592e9c61886dba_JaffaCakes118
Size

700KB
MD5

affe36f06b8eb92752592e9c61886dba
SHA1

bde9d122f343447c0bd0fae17154cc682a38ff2b
SHA256

fd090b9498089b48edee16ee91185f908a70d6846de497c5162fa89476388a20
SHA512

4716c1d3a898d5bd5a2ba9f94172c0be577b827580eee6159b9e21d058667e378d246256c6eaafcbb9c0a677899cb159531455b8150aa31fac73e65acb59afb8
SSDEEP

12288:/QmLbketE0htIdPiPdS/Wg2TPwp0vYLVlSs9U9ZdWwhEr46GjySbtnFUMRFW:/QPz+vTop0YF9UdWtr4ZjPnF5FW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
affe36f06b8eb92752592e9c61886dba_JaffaCakes118

Files

affe36f06b8eb92752592e9c61886dba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a0ad54912eab2c2405c7e7d603567ea7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx
ord6

kernel32

GetProcAddress
CompareStringW
CompareStringA
FlushFileBuffers
GetLocaleInfoA
InterlockedExchange
VirtualQuery
GetSystemInfo
VirtualProtect
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetTickCount
QueryPerformanceCounter
HeapSize
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetTimeZoneInformation
GetCPInfo
GetSystemTimeAsFileTime
GetACP
GetCurrentDirectoryA
GetDriveTypeA
SetEndOfFile
SetStdHandle
GetStdHandle
SetHandleCount
SetFilePointer
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetCommandLineA
GetStartupInfoA
ReadFile
MoveFileA
GetFullPathNameA
GetFileType
HeapAlloc
HeapReAlloc
HeapFree
GetCurrentProcess
TerminateProcess
GetModuleHandleA
ExitProcess
GetFileAttributesA
GetLastError
RtlUnwind
FindFirstFileA
FindNextFileA
FindClose
GetTempPathA
GetTempFileNameA
CreateFileA
WriteFile
CloseHandle
GetCurrentProcessId
CreateProcessA
Sleep
DeleteFileA
CreateDirectoryA
WritePrivateProfileStructA
GetPrivateProfileStructA
WritePrivateProfileStringA
GlobalSize
GlobalLock
GlobalUnlock
lstrlenW
lstrlenA
WideCharToMultiByte
GetPrivateProfileStringA
GetCurrentThreadId
MultiByteToWideChar
MulDiv
FindResourceA
LoadResource
SizeofResource
SetEnvironmentVariableA
LockResource
GetModuleFileNameA
GetSystemDefaultLangID
LoadLibraryA
FreeLibrary
GetOEMCP

user32

GetMenu
LoadMenuA
SetMenu
LoadIconA
GetFocus
IsWindow
GetClipboardOwner
GetClassNameA
EnumThreadWindows
BeginPaint
EndPaint
GetKeyState
GetSysColorBrush
FillRect
DeleteMenu
GetParent
GetMenuItemID
GetDC
CallWindowProcA
GetSystemMetrics
InsertMenuA
CreatePopupMenu
PostQuitMessage
TranslateMessage
RegisterClassA
InvalidateRect
UpdateWindow
LoadCursorA
SetCursor
SetCapture
ReleaseCapture
GetWindowRect
WindowFromPoint
IsIconic
CloseClipboard
GetClipboardData
GetMenuItemCount
OpenClipboard
GetMessageA
DispatchMessageA
PeekMessageA
LoadImageA
SendMessageA
ScreenToClient
GetScrollInfo
GetAsyncKeyState
SystemParametersInfoA
ReleaseDC
GetSysColor
GetDlgItemInt
SetDlgItemInt
EnableWindow
GetDlgItem
CreateDialogParamA
GetDlgItemTextA
SetScrollInfo
CreateWindowExA
GetClientRect
DestroyWindow
EndDialog
IsDlgButtonChecked
SetWindowTextA
SetDlgItemTextA
CheckRadioButton
CheckDlgButton
SendDlgItemMessageA
SetClipboardViewer
DialogBoxParamA
ChangeClipboardChain
IsClipboardFormatAvailable
GetWindowLongA
SetWindowPos
ShowWindow
SetWindowLongA
SetFocus
wsprintfA
DrawMenuBar
ClientToScreen
TrackPopupMenu
DestroyMenu
SetTimer
KillTimer
DefWindowProcA
CheckMenuItem
MessageBoxA
GetCursorPos
SetForegroundWindow
TrackPopupMenuEx
PostMessageA
DestroyIcon
FindWindowA
GetWindowPlacement
GetSubMenu
ModifyMenuA
EnableMenuItem
GetWindowTextA

gdi32

CreateFontIndirectA
GetTextExtentExPointA
GetTextExtentPointA
TextOutW
SetPixel
SetTextColor
SetBkMode
EnumFontFamiliesExA
EndDoc
EndPage
StartPage
StartDocA
Escape
GetCharWidthW
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
GetTextMetricsA
DeleteObject
CreateSolidBrush
CreateICA
GetDeviceCaps
DeleteDC
AbortDoc
GetStockObject

comdlg32

GetOpenFileNameA
GetSaveFileNameA
ChooseColorA
PrintDlgA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
ShellExecuteA
Shell_NotifyIconA
SHGetMalloc

ole32

CoInitialize
CreateBindCtx
CoCreateInstance
CoUninitialize

oleaut32

SysFreeString
SysAllocString
VariantInit
VariantClear
SysAllocStringLen

Sections

.text
Size: 240KB - Virtual size: 237KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 344KB - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a0ad54912eab2c2405c7e7d603567ea7

Headers

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 240KB - Virtual size: 237KB

.rdata Size: 44KB - Virtual size: 42KB

.data Size: 68KB - Virtual size: 75KB

.rsrc Size: 344KB - Virtual size: 340KB

.text
Size: 240KB - Virtual size: 237KB

.rdata
Size: 44KB - Virtual size: 42KB

.data
Size: 68KB - Virtual size: 75KB

.rsrc
Size: 344KB - Virtual size: 340KB