ba150aa151e72a310f7e41925b7d8ee6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ba150aa151e72a310f7e41925b7d8ee6_JaffaCakes118
Size

304KB
MD5

ba150aa151e72a310f7e41925b7d8ee6
SHA1

dcd8236601278a747ebfc69ec5465bfe3a6aeb6f
SHA256

46fefffc746c60586ec87f28cc443bab7b644a9231357f3e12a011740f26e486
SHA512

50c387426b46f4954ec558f8a3c80eac2bac804144aead7dd7bc69d8cae7d72a4273b4fac85d244b11ede6e10e674509f80b683a9e00fbc1c2c8acb734904b6e
SSDEEP

6144:7ALcZtMZnFgCIuDO3NYLcQYqaf1CKNozH7QLjvwzLfKY:7ALcvMNlDkYLcTbPobQvvw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba150aa151e72a310f7e41925b7d8ee6_JaffaCakes118

Files

ba150aa151e72a310f7e41925b7d8ee6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b8692e5cb2eb9ab0a7ef0b43d4dfb712

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetSaveFileNameA

kernel32

MulDiv
GetLogicalDrives
DeleteTimerQueueEx
GlobalFindAtomW
LoadLibraryExW
_lopen
GetSystemWindowsDirectoryW
ExpandEnvironmentStringsA
GlobalFindAtomA
GetProcessAffinityMask
HeapSize
CompareFileTime
GlobalSize
FileTimeToSystemTime
GetCommandLineW
GetSystemPowerStatus
SetFileTime
SetLastError
CreateEventA
DeleteTimerQueueTimer
CreateFileA
GetThreadLocale
EnterCriticalSection
RaiseException
DeleteFileW
GetFileType
lstrlenW
WriteConsoleA
SetEvent
QueueUserWorkItem
GetLongPathNameW
GetStringTypeExA
OutputDebugStringA
WaitForMultipleObjectsEx
GetModuleHandleA
SetConsoleCtrlHandler
GetEnvironmentVariableW
SetFileAttributesW
WriteFile
FileTimeToLocalFileTime
CopyFileA
SetCurrentDirectoryW
TlsAlloc
EnumSystemLocalesA
ResumeThread
InterlockedIncrement
InterlockedDecrement
GetStringTypeW
MultiByteToWideChar
GetProcAddress
HeapReAlloc
HeapAlloc
GetOEMCP
GetStringTypeA
LCMapStringW
GetACP
LeaveCriticalSection
InitializeCriticalSection
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetLastError
TlsGetValue
LCMapStringA
TlsSetValue
GetCurrentThreadId
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetStartupInfoA
GetCommandLineA
GetProcessTimes
CompareStringA
SystemTimeToTzSpecificLocalTime
GetTimeZoneInformation
GetCPInfo
MoveFileW
GetPrivateProfileSectionA
_lread
LoadLibraryA
TlsFree
GetFileSize
GetSystemDirectoryW
VirtualAlloc

comctl32

ImageList_DragEnter
ImageList_DragMove
ImageList_DragLeave
ImageList_DragShowNolock

ole32

DoDragDrop
OleDuplicateData
CreateOleAdviseHolder
SetConvertStg
GetClassFile
CoRegisterClassObject
CoUninitialize
OleCreateLinkToFile

shell32

SHGetPathFromIDListA
ShellExecuteExW
SHGetDesktopFolder
SHGetPathFromIDListW
SHGetFolderLocation

version

VerQueryValueA

user32

DestroyCursor
FillRect
SetForegroundWindow
GetTopWindow
PeekMessageA
EnumChildWindows
LoadCursorW
CreateAcceleratorTableW
GetClientRect
CharUpperW
GetClassNameA
CharToOemA
BroadcastSystemMessageA
GetMenuCheckMarkDimensions
CharUpperBuffW
SetWindowPlacement
InsertMenuA
ValidateRect
RegisterClipboardFormatW
LoadStringW
EnumThreadWindows
IsZoomed
CallNextHookEx
InvalidateRect
MapDialogRect
CharLowerW
GetAsyncKeyState
ClientToScreen
RegisterClassExW
SetCapture
GetCaretBlinkTime
SetScrollInfo
DefFrameProcA
CopyAcceleratorTableW
LoadAcceleratorsW
SetCursorPos
GetUpdateRect
EmptyClipboard
MoveWindow
AppendMenuA
AppendMenuW
InsertMenuItemA
OemToCharBuffA
PtInRect
ShowWindow
CharNextA
GetKeyboardLayout
DialogBoxIndirectParamW
WindowFromDC
GetClassLongW
CallWindowProcA
GetIconInfo
MapVirtualKeyA

gdi32

SetViewportOrgEx
EndDoc
CreateFontIndirectW
SetWinMetaFileBits
StartDocW
CreatePen

oleaut32

SafeArrayPutElement

shlwapi

AssocQueryStringW

advapi32

CryptHashData
RegQueryValueExW
RegSetKeySecurity
SetSecurityDescriptorOwner
IsValidSecurityDescriptor
GetNamedSecurityInfoW
CryptCreateHash
StartServiceCtrlDispatcherW

Sections

.text
Size: 256KB - Virtual size: 252KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b8692e5cb2eb9ab0a7ef0b43d4dfb712

Headers

File Characteristics

Imports

comdlg32

kernel32

comctl32

ole32

shell32

version

user32

gdi32

oleaut32

shlwapi

advapi32

Sections

.text Size: 256KB - Virtual size: 252KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 16KB - Virtual size: 15KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 256KB - Virtual size: 252KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 16KB - Virtual size: 15KB

.rsrc
Size: 4KB - Virtual size: 2KB