bab678eedf3f97c96cd452a2ccacbcca_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bab678eedf3f97c96cd452a2ccacbcca_JaffaCakes118
Size

166KB
MD5

bab678eedf3f97c96cd452a2ccacbcca
SHA1

4b30b83daa62416d8e3265e0e88c2547d3af07a1
SHA256

8b78ca0914c2d68a9648b66561cac53f20c9dcffe0704d2ba33e3e31a5ea26f5
SHA512

53420f73f9095e4336ab665f5fdf6fbc4061d93b0b692aaecf11c8d84498f585d9423197d34e950b42e27734446eb9b52cad53f5eac18e51494368e9b3309e55
SSDEEP

3072:CCq1tKj3XSAj6eEdN4fn4hp7p0gukr3CyH8PRmIS:Tqy7/526Cp7jZreS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bab678eedf3f97c96cd452a2ccacbcca_JaffaCakes118

Files

bab678eedf3f97c96cd452a2ccacbcca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9b08097ae5cd5d7ab09f75269c959686

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

gdiplus

GdipCreateBitmapFromFile
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImageWidth
GdipDisposeImage

kernel32

GlobalUnlock
GetSystemTimeAsFileTime
CopyFileW
FindClose
InterlockedIncrement
InterlockedExchange
ClearCommBreak
GetLastError
OutputDebugStringW
ExitProcess
DisableThreadLibraryCalls
RemoveDirectoryW
WideCharToMultiByte
GlobalAlloc
GetThreadLocale
FindNextFileW
GetTempPathW
ClearCommBreak
ReadFile
GetCurrentProcessId
LeaveCriticalSection
GlobalLock
InitializeCriticalSection
FreeLibrary
SetFileAttributesW
GetLocaleInfoA
lstrlenA
GetModuleFileNameW
GetCurrentThreadId
EnumResourceNamesW
MultiByteToWideChar
GetTempFileNameW
QueryPerformanceCounter
DeleteCriticalSection
Sleep
ExitProcess
GetVersionExW
CreateDirectoryW
GetACP
GetFullPathNameW
InterlockedDecrement
LocalFree
GetProcAddress
GetTickCount
GetModuleFileNameA
LocalAlloc
GetVersionExA
LoadLibraryW
DeleteFileW
FindFirstFileW
lstrlenW
CreateFileW
CloseHandle
EnterCriticalSection
GetFileAttributesExW

msimg32

AlphaBlend
TransparentBlt

user32

CreatePopupMenu
GetDesktopWindow
UnionRect
OffsetRect
SetCursor
OpenClipboard
IntersectRect
GetKeyState
PtInRect
CopyRect
ReleaseCapture
SendMessageW
SetRectEmpty
GetFocus
GetClientRect
InvalidateRect
FillRect
ClipCursor
wsprintfW
GetClipboardData
LoadCursorW
SetParent
GetWindowRect
EnableWindow
EmptyClipboard
SetWindowPos
GetParent
IsWindow
EqualRect
ReleaseDC
RedrawWindow
IsRectEmpty
CloseClipboard
SetCapture
GetDC
UpdateWindow
TrackPopupMenuEx
SetRect
SetClipboardData
DestroyMenu
TranslateMessage
ClientToScreen
ScreenToClient

gdi32

CreatePolygonRgn
CreateCompatibleBitmap
CreatePen
CreateBitmap
BeginPath
Polyline
DeleteObject
CreateSolidBrush
MoveToEx
CreateDCW
SetBkMode
ExtCreatePen
StretchBlt
GetObjectType
DeleteDC
StrokePath
GetBitmapBits
SetROP2
CreateCompatibleDC
CreateFontIndirectW
SetStretchBltMode
SelectObject
LineTo
InvertRgn
BitBlt
EndPath
GetDeviceCaps
PtInRegion
CreateDIBSection
GetObjectW

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
RegDeleteKeyW
RegCreateKeyW
RegSetValueW
RegEnumKeyExW

shlwapi

PathRemoveFileSpecW
PathRenameExtensionW
PathIsRelativeW
PathIsDirectoryW
PathAppendW
PathCombineW
PathAddBackslashW
PathRemoveBackslashW
PathFileExistsW

shell32

SHGetSpecialFolderPathW
DragQueryFileW

comctl32

ImageList_DragLeave
ImageList_DragMove
ImageList_DragEnter

ole32

StringFromGUID2
CoUninitialize
CoFreeUnusedLibraries
CoInitialize
CoCreateInstance

Sections

.text
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9b08097ae5cd5d7ab09f75269c959686

Headers

File Characteristics

Imports

winmm

gdiplus

kernel32

msimg32

user32

gdi32

advapi32

shlwapi

shell32

comctl32

ole32

Sections

.text Size: 117KB - Virtual size: 116KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 43KB - Virtual size: 42KB

.rsr Size: 512B - Virtual size: 64KB

.text
Size: 117KB - Virtual size: 116KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 43KB - Virtual size: 42KB

.rsr
Size: 512B - Virtual size: 64KB