b073cda27d316aaf86f95aeb41ed39f0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b073cda27d316aaf86f95aeb41ed39f0_JaffaCakes118
Size

1.2MB
MD5

b073cda27d316aaf86f95aeb41ed39f0
SHA1

abd183d3dcff8989ef9271a87447d9919fa2214e
SHA256

4397cad39ca36852c6c134739214be39d27f0472ceb22820a6651d6f3f6de6c6
SHA512

963297a177856f3696e4e5a69fcf8b87bff022c43e3546f5a156b80e857a8c4ca5866d785db38fac583a4bd863f86d350a7b83b7b1c18646e7cb6e9be779a891
SSDEEP

24576:YS+DeXi18p8+i8794lH7Jpv18LC3Ujgoqx6RE8TbNz5dV8kGC8g:1+6XiH+i8J4ZJpv18rjgmE8NtLiCZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b073cda27d316aaf86f95aeb41ed39f0_JaffaCakes118

Files

b073cda27d316aaf86f95aeb41ed39f0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2b9785eb9a695bb0c0e03da2a97cf9de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\rczip\trunk\bin\Win32\release\pdb\HaoZip7zSetup.pdb

Imports

comctl32

InitCommonControlsEx

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListW
ShellExecuteW
ShellExecuteExW
CommandLineToArgvW
SHGetFileInfoW
SHGetMalloc
SHBrowseForFolderW

kernel32

SetCurrentDirectoryW
CreateProcessW
GetCurrentDirectoryW
LocalFree
WaitForSingleObject
SetFileApisToOEM
SetPriorityClass
SetThreadPriority
GetLastError
GetEnvironmentVariableW
GetCurrentProcess
GetCurrentThread
GetCommandLineW
FormatMessageW
GetModuleHandleW
FindResourceW
GetFileAttributesW
DeleteFileW
SetFileAttributesW
RemoveDirectoryW
CreateDirectoryW
InterlockedIncrement
InterlockedDecrement
FindFirstFileW
FindClose
FindNextFileW
FileTimeToSystemTime
SetFileTime
SetEndOfFile
WriteFile
GetFileSize
ReadFile
CreateFileW
SetFilePointer
GetCurrentThreadId
ResumeThread
Sleep
GetACP
MultiByteToWideChar
WideCharToMultiByte
FreeLibrary
GetProcAddress
GetTempFileNameW
GetLongPathNameW
MoveFileW
CloseHandle
GetWindowsDirectoryW
GetFullPathNameW
GetVersionExW
ExpandEnvironmentStringsW
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
InitializeCriticalSection
LoadLibraryA
HeapReAlloc
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidCodePage
GetOEMCP
SetEvent
GetCPInfo
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
DeleteCriticalSection
GetModuleFileNameW
GetTempPathW
WaitForMultipleObjects
CreateEventW
ResetEvent
lstrlenW
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
ExitProcess
HeapSize
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoW
GetSystemTimeAsFileTime
ExitThread
CreateThread
RaiseException
RtlUnwind
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError

user32

GetActiveWindow
LoadStringW
GetDesktopWindow
ScreenToClient
GetMessageW
IsDialogMessageW
PostQuitMessage
KillTimer
IsWindowVisible
LoadIconW
EnableWindow
CreateDialogParamW
DispatchMessageW
SetTimer
TranslateMessage
DestroyIcon
IsWindow
SendMessageW
MessageBoxW
GetWindowRect
GetSystemMetrics
PostMessageW
DialogBoxParamW
SetWindowPos
GetWindowTextW
SetWindowTextW
GetDlgItem
EndDialog
ShowWindow

gdi32

CreateSolidBrush
DeleteObject

advapi32

RegCloseKey
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW

ole32

CoUninitialize
CoInitialize
CoTaskMemFree
CoCreateInstance
CoInitializeEx

Sections

.text
Size: 268KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 209KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b9785eb9a695bb0c0e03da2a97cf9de

Headers

File Characteristics

PDB Paths

Imports

comctl32

shell32

kernel32

user32

gdi32

advapi32

ole32

Sections

.text Size: 268KB - Virtual size: 268KB

.rdata Size: 67KB - Virtual size: 67KB

.data Size: 16KB - Virtual size: 41KB

.rsrc Size: 209KB - Virtual size: 209KB

.text
Size: 268KB - Virtual size: 268KB

.rdata
Size: 67KB - Virtual size: 67KB

.data
Size: 16KB - Virtual size: 41KB

.rsrc
Size: 209KB - Virtual size: 209KB