b625cc338977a959a36e2cc4dae5cfbd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b625cc338977a959a36e2cc4dae5cfbd_JaffaCakes118
Size

304KB
MD5

b625cc338977a959a36e2cc4dae5cfbd
SHA1

6f8503a853af3c747b965c1f2a9aa529dfb5b214
SHA256

a19f34706410ee5e6ca9dc4b7f219f3d8c58e04a1bd5e9c26222f7c0ecde79ec
SHA512

960107adf39df47d4e922061ca6aaa8884c6f756773798ef128a400b16c0f7b0e7bf25c1b22ac4ee27dc35f78a4ddb16a8770e9b3e61288fe222dc5181b48a33
SSDEEP

6144:Vj8rYS0vOicyw2LagaI2zx28ZkOT6IrrKQm1/6E3xaKS:Vj8z0vOixLa7dx28ZFT6qmEE3nS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b625cc338977a959a36e2cc4dae5cfbd_JaffaCakes118

Files

b625cc338977a959a36e2cc4dae5cfbd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd765d55973a75ef584e43892535ff98

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

imm32

ImmGetCompositionWindow
ImmIsUIMessageA
ImmGetCompositionFontW
ImmGetCandidateListA
ImmReleaseContext
ImmRegisterWordA
ImmIsIME
ImmSetConversionStatus
ImmInstallIMEA
ImmSimulateHotKey
ImmSetCandidateWindow
ImmGetCompositionFontA
ImmGetContext
ImmGetOpenStatus
ImmGetVirtualKey
ImmSetCompositionFontW
ImmSetCompositionWindow
ImmGetCandidateWindow
ImmEscapeW
ImmUnregisterWordW
ImmSetOpenStatus
ImmNotifyIME
ImmGetConversionListA

msvcrt

_exit
_XcptFilter
exit
_acmdln
__getmainargs
_onexit
__dllonexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm

imagehlp

MapFileAndCheckSumA
StackWalk
ImageGetDigestStream
ImageUnload
BindImageEx
SymGetLineFromAddr
SymFunctionTableAccess
ImagehlpApiVersionEx
UnMapAndLoad
SearchTreeForFile
UnDecorateSymbolName
SymMatchFileName
SymGetSearchPath
SymRegisterCallback
ImageDirectoryEntryToData
SymGetSymFromAddr
ImageEnumerateCertificates
ImageAddCertificate
ImageRemoveCertificate
GetImageUnusedHeaderBytes
RemoveRelocations
SymCleanup

kernel32

CreateFileMappingW
GetFileType
EnumSystemCodePagesW
CloseHandle
GetLogicalDrives
GetCommState
FlushFileBuffers
EnumResourceNamesW
GetLocalTime
FindNextChangeNotification
GetDevicePowerState
GetCommProperties
FreeEnvironmentStringsA
GetModuleFileNameA
GetDefaultCommConfigW
Beep
CreateSemaphoreW
ConnectNamedPipe
GetAtomNameW
CreateFileW
GetLongPathNameW
CreateFileA
FindResourceA
GetFileAttributesW
GetCurrentThread
EnumResourceTypesW
GetExitCodeProcess
AddAtomA
GetAtomNameA
GetDateFormatA
CreateFileMappingA
FormatMessageA
BuildCommDCBAndTimeoutsA
GetCPInfo
FoldStringA
GetModuleFileNameW
GetDiskFreeSpaceA
GetStartupInfoA
BuildCommDCBW
FileTimeToDosDateTime
EnumDateFormatsW
DisconnectNamedPipe
CreateMailslotW
EnumCalendarInfoA
GetFileAttributesExA
GetLogicalDriveStringsW
GetCurrencyFormatA
EnumDateFormatsA
GetEnvironmentVariableA
GetEnvironmentStrings
FlushInstructionCache
GetConsoleOutputCP
GetCurrentDirectoryW
GetCurrencyFormatW
EndUpdateResourceA
CreateDirectoryA
CreateSemaphoreA
EnumTimeFormatsA
GetEnvironmentVariableW
GenerateConsoleCtrlEvent
GetComputerNameW
GetFileAttributesExW
FileTimeToSystemTime
CreateIoCompletionPort
GetCompressedFileSizeA
EnumSystemLocalesA
FindClose
CallNamedPipeA
GetFileInformationByHandle
CommConfigDialogA
FindFirstFileA
AreFileApisANSI
GetNamedPipeHandleStateA
ClearCommBreak
EscapeCommFunction
GetModuleHandleA
FlushConsoleInputBuffer
EndUpdateResourceW
FoldStringW
GetDefaultCommConfigA
FillConsoleOutputCharacterA
GetCurrentProcessId
GetConsoleMode
GetConsoleTitleA
BackupSeek
GetMailslotInfo
GetDiskFreeSpaceExW
GetFileAttributesA
CreateNamedPipeW
GetLocaleInfoA
GetEnvironmentStringsW
EnumCalendarInfoW

advapi32

RegFlushKey

oleaut32

VarI4FromUI4

user32

GetClientRect

ole32

OleConvertIStorageToOLESTREAM

gdi32

OffsetRgn
SetBitmapDimensionEx
GetPixel
StrokePath
GetObjectType
RoundRect
GetRasterizerCaps
SwapBuffers
MoveToEx
ModifyWorldTransform
GetSystemPaletteEntries
GetNearestColor
GetWorldTransform
PlayEnhMetaFileRecord
SetWindowExtEx
WidenPath
PtVisible
SetPolyFillMode
GetObjectW
PolyBezier
GetTextExtentExPointA
GetViewportOrgEx
GetTextAlign
PolyPolyline
SetRectRgn
GetMetaFileA
ScaleViewportExtEx
GetTextCharacterExtra
SetBoundsRect
GetStockObject
GetMetaFileBitsEx
PlayEnhMetaFile
LineTo
GetTextCharsetInfo
PlayMetaFile
GetMetaRgn
SetWindowOrgEx
ResetDCA
GetRgnBox
SetColorAdjustment
RectVisible
SetBrushOrgEx
SetDIBitsToDevice
UpdateICMRegKeyA
GetMiterLimit
GetViewportExtEx
GetTextMetricsA
PolyTextOutW
PolylineTo
UnrealizeObject
SetICMProfileA
GetPath
GetStretchBltMode
PlayMetaFileRecord
SetMetaRgn
SetBkMode
GetPaletteEntries
GetKerningPairsA
SetMetaFileBitsEx
SetDIBits
StartPage
SetEnhMetaFileBits
SelectPalette
SetDIBColorTable
SetMapMode
GetObjectA
SetTextJustification

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bd765d55973a75ef584e43892535ff98

Headers

File Characteristics

Imports

imm32

msvcrt

imagehlp

kernel32

advapi32

oleaut32

user32

ole32

gdi32

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 8KB - Virtual size: 1.5MB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 8KB - Virtual size: 1.5MB

.rsrc
Size: 4KB - Virtual size: 1KB