ba4642764aef8856118dbff7bb471e1d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ba4642764aef8856118dbff7bb471e1d_JaffaCakes118
Size

180KB
MD5

ba4642764aef8856118dbff7bb471e1d
SHA1

3df52cdde89ae66f9d44999082f325d63f036dc3
SHA256

413b157061c38d3c19c2c044d48fab250daaafd7c6be101d2708f2857bb66346
SHA512

3060bc560f203e652d3f4cc3b391577ed557946df23b45068d458de73af53f233d006e4a6edee7a4a1f1a50f9709fd4c351cf34349caf1436057582f583e055a
SSDEEP

3072:BGVNBDOdeqQ9PtJ91fEHE7/RZYIMeDAuP7RJspIGrF5IxXl+pGD+F:BirNPb1fEHuRZYIMeUuPNepIGrF5IxXi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba4642764aef8856118dbff7bb471e1d_JaffaCakes118

Files

ba4642764aef8856118dbff7bb471e1d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

287162ca8e2bb771f54fb5e00c957c98

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleFlushClipboard
OleInitialize
CoRevokeClassObject
CreateILockBytesOnHGlobal
CoInitialize
CoFreeUnusedLibraries
StgCreateDocfileOnILockBytes
CoTaskMemFree
CoUninitialize
CoGetClassObject
OleIsCurrentClipboard
CoCreateInstance
CoRegisterMessageFilter
CLSIDFromProgID
CoTaskMemAlloc
StgOpenStorageOnILockBytes
OleUninitialize
CLSIDFromString

comdlg32

GetFileTitleW

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

gdi32

GetBkColor
SetBkColor
TextOutW
Escape
GetRgnBox
GetWindowExtEx
RectVisible
ExtTextOutW
SaveDC
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
CreateBitmap
GetViewportExtEx
RestoreDC
ExtSelectClipRgn
OffsetViewportOrgEx
ScaleViewportExtEx
SetMapMode
SelectObject
DeleteObject
SetViewportOrgEx
SetTextColor
GetStockObject
GetClipBox
PtVisible
GetDeviceCaps
GetTextColor
GetMapMode
GetObjectW
DeleteDC
CreateRectRgnIndirect

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

kernel32

GetLocaleInfoW
ReleaseMutex
InitializeCriticalSection
GetACP
RaiseException
CreateFileW
GetVersion
GetCalendarInfoW
LoadLibraryW
DeleteCriticalSection
SetFilePointer
RemoveDirectoryW
GetFileAttributesW
MultiByteToWideChar
SetFileTime
GetThreadContext
ReadFile
GetCurrentDirectoryW
FindClose
SystemTimeToFileTime
InterlockedDecrement
CreateDirectoryW
GetSystemDefaultLangID
GetModuleFileNameW
EnumResourceNamesA
LockResource
GetThreadLocale
GetProcAddress
GetCurrentProcessId
CreateMutexW
lstrcpyW
FreeLibrary
InterlockedExchange
VirtualFree
WideCharToMultiByte
MoveFileW
ConvertDefaultLocale
GetLocaleInfoA
LocalFileTimeToFileTime
EnumResourceLanguagesW
FindFirstFileW
ExitProcess
FindNextFileW
LoadResource
CloseHandle
WriteFile
DeleteFileW
FindResourceW
WaitForSingleObject
lstrcmpiA
GetVersionExW
GetModuleHandleW
SizeofResource
lstrcmpA

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW
PathFileExistsW
PathFindExtensionW
PathAppendW

oledlg

OleUIBusyW

advapi32

RegQueryInfoKeyW
RegOpenKeyW
RegOpenKeyExW
RegCloseKey
RegEnumKeyW
RegEnumKeyExW
RegSetValueExW
RegDeleteKeyW
RegQueryValueW
RegCreateKeyExW
RegQueryValueExW

user32

CallWindowProcW
RegisterClassW
InvalidateRect
CharUpperW
GetClassLongW
IsIconic
LoadIconW
UpdateWindow
RegisterWindowMessageW
IsWindow
IntersectRect
GetClassInfoW
SetRect
GetForegroundWindow
SetActiveWindow
IsRectEmpty
MessageBeep
CopyAcceleratorTableW
OffsetRect
SendDlgItemMessageA
SetForegroundWindow
RemovePropW
MapWindowPoints
GetNextDlgTabItem
GetPropW
InvalidateRgn
WinHelpW
CreateWindowExW
GetNextDlgGroupItem
IsChild
CharNextW
GetMenu
EqualRect
GetClassInfoExW
GetClientRect
GetMessagePos
SetPropW
DefWindowProcW
GetWindowPlacement
GetMessageTime
GetTopWindow
AdjustWindowRectEx
DestroyMenu

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

287162ca8e2bb771f54fb5e00c957c98

Headers

File Characteristics

Imports

ole32

comdlg32

shell32

gdi32

winspool.drv

kernel32

shlwapi

oledlg

advapi32

user32

Sections

.text Size: 98KB - Virtual size: 98KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 74KB - Virtual size: 74KB

.edata Size: 1024B - Virtual size: 244KB

.text
Size: 98KB - Virtual size: 98KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 74KB - Virtual size: 74KB

.edata
Size: 1024B - Virtual size: 244KB