b80dd89ca2bd5f02e807c98a08549370_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b80dd89ca2bd5f02e807c98a08549370_JaffaCakes118
Size

397KB
MD5

b80dd89ca2bd5f02e807c98a08549370
SHA1

c1c475d441b55954e381eb4a528f88b0f87aea7c
SHA256

3a4e1ccfa3802f53f0b3e9043c1a6fe48546cf1f8be434f9a38687b89b45b3c7
SHA512

33cb476c102c00df603d99b142565e5d68db6727c8b0833e7a207fa6f653d7bf59d4ea30b2eac215a812de504e3f76bc92c812283fb01e7d275070c195b02aae
SSDEEP

12288:boEI8SWOAkXDIfj7nZtiU1ZVQMCN1uYADAFQLcjbT:boEINWOANvnjiUbVBCN17AD8QLcj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b80dd89ca2bd5f02e807c98a08549370_JaffaCakes118

Files

b80dd89ca2bd5f02e807c98a08549370_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d771b0d6aacd33d5ff056e5aea64d525

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

ICImageCompress
ICLocate
ICImageDecompress
ICClose
ICCompressorChoose
ICCompressorFree

comctl32

ord6
ord17
CreateToolbarEx

kernel32

ReadFile
GetTickCount
Sleep
CreateThread
GetCurrentThread
SetEnvironmentVariableA
CompareStringW
CompareStringA
LoadLibraryA
SetStdHandle
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
VirtualAlloc
FlushFileBuffers
SetUnhandledExceptionFilter
VirtualFree
GetPrivateProfileStringA
HeapDestroy
GetStdHandle
GetFileType
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
SetFilePointer
GetLastError
LCMapStringW
WideCharToMultiByte
LCMapStringA
MultiByteToWideChar
HeapSize
HeapReAlloc
GetProcAddress
HeapFree
HeapAlloc
GetCurrentProcess
TerminateProcess
ExitProcess
RaiseException
GetVersion
GetStartupInfoA
RtlUnwind
SetErrorMode
GlobalAlloc
GlobalFree
GetCurrentDirectoryA
GetCommandLineA
GetProfileStringA
SetCurrentDirectoryA
GlobalLock
GlobalUnlock
CreateDirectoryA
CreateFileA
WriteFile
CloseHandle
CreateSemaphoreA
FindFirstFileA
FindNextFileA
FindClose
DeleteFileA
CopyFileA
GetFileAttributesA
SetFileAttributesA
GetModuleHandleA
WritePrivateProfileStringA
HeapCreate
SetEndOfFile

user32

SetWindowLongA
PeekMessageA
GetSysColor
SetClipboardData
PtInRect
GetCursorPos
ScreenToClient
IsClipboardFormatAvailable
GetScrollInfo
GetDlgItemTextA
GetWindowTextLengthA
SetWindowPos
SendDlgItemMessageA
SetScrollRange
SetScrollPos
GetKeyState
DestroyMenu
SetWindowPlacement
LoadMenuA
GetClassNameA
RegisterClassA
CreateWindowExA
LoadBitmapA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
ReleaseDC
GetDC
GetWindowTextA
SetWindowTextA
PostMessageA
KillTimer
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetScrollPos
ClientToScreen
DefWindowProcA
GetWindowLongA
EndPaint
DispatchMessageA
PostQuitMessage
SetFocus
GetWindowPlacement
GetSystemMetrics
keybd_event
OpenClipboard
GetClipboardData
CloseClipboard
EnableMenuItem
CheckMenuItem
SetForegroundWindow
GetParent
GetWindowRect
SetScrollInfo
GetMenu
GetSubMenu
InsertMenuA
DeleteMenu
IsWindowVisible
GetClientRect
MoveWindow
DialogBoxParamA
ShowWindow
SetTimer
InvalidateRect
UpdateWindow
LoadCursorA
SetCursor
SendMessageA
EnableWindow
LoadIconA
SetClassLongA
GetDlgItem
EndDialog
MessageBoxA
DestroyWindow
BeginPaint
GetCursor

gdi32

SelectObject
DeleteObject
RoundRect
MoveToEx
DeleteDC
GetStockObject
LineTo
GetTextMetricsA
GetObjectA
BitBlt
Rectangle
SetROP2
CreatePen
StretchDIBits
SetStretchBltMode
StretchBlt
SetTextColor
SetBkColor
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
SetPixel
GetPixel
EndDoc
EndPage
GetDeviceCaps
StartPage
StartDocA
GetTextExtentPoint32A
CreateSolidBrush

comdlg32

GetOpenFileNameA
GetSaveFileNameA
ChooseColorA
GetFileTitleA
PrintDlgA

shell32

DragFinish
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteA
DragQueryFileA

ole32

CoInitialize
CoUninitialize

Sections

.text
Size: 324KB - Virtual size: 324KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d771b0d6aacd33d5ff056e5aea64d525

Headers

File Characteristics

Imports

msvfw32

comctl32

kernel32

user32

gdi32

comdlg32

shell32

ole32

Sections

.text Size: 324KB - Virtual size: 324KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 19KB - Virtual size: 87KB

.idata Size: 5KB - Virtual size: 5KB

.rsrc Size: 22KB - Virtual size: 22KB

.reloc Size: 15KB - Virtual size: 15KB

.text
Size: 324KB - Virtual size: 324KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 19KB - Virtual size: 87KB

.idata
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 22KB - Virtual size: 22KB

.reloc
Size: 15KB - Virtual size: 15KB