bab7c30ec7d8c7a1794f1c942b551345_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bab7c30ec7d8c7a1794f1c942b551345_JaffaCakes118
Size

179KB
MD5

bab7c30ec7d8c7a1794f1c942b551345
SHA1

c11ccad0eec4bfca4cbdb637547c2f245845bd93
SHA256

53b5619edbac996a2ab3a6f5f1cc803837eca83dacec625d3a31fb8f7a01eef7
SHA512

68193d339edf06394bff97d1861c3ea4ca40e94f0b95ead5f259f56556079c385669eb5d301058def1153ca4e2611ceae2174c7244f75e1d43d9410309a73903
SSDEEP

3072:QR8/oduaIl+1oHBjq+PJR6V/Ot7ynBlZpK65kis9b0nDx:I8/odn/ux0BOt7ynnfK66b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bab7c30ec7d8c7a1794f1c942b551345_JaffaCakes118

Files

bab7c30ec7d8c7a1794f1c942b551345_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dd6d6b437b940cbc8ab8e22e519c3f88

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InvalidateRect
GetNextDlgGroupItem
SetPropW
InvalidateRgn
DefWindowProcW
UpdateWindow
LoadIconW
GetClassLongW
CallWindowProcW
GetTopWindow
WinHelpW
RemovePropW
EqualRect
IsIconic
IsWindow
SetForegroundWindow
CharNextW
GetPropW
GetNextDlgTabItem
OffsetRect
GetMessagePos
CopyAcceleratorTableW
SetRect
GetClassInfoW
GetMenu
IntersectRect
GetWindowPlacement
AdjustWindowRectEx
RegisterClassW
CharUpperW
RegisterWindowMessageW
GetForegroundWindow
SendDlgItemMessageA
SetActiveWindow
MessageBeep
GetClassInfoExW
MapWindowPoints
CreateWindowExW
IsRectEmpty
GetClientRect
GetMessageTime
IsChild
DestroyMenu

ole32

CoFreeUnusedLibraries
CoUninitialize
CoTaskMemFree
CoRevokeClassObject
CoCreateInstance
OleFlushClipboard
StgCreateDocfileOnILockBytes
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
CoTaskMemAlloc
CoInitialize
CoGetClassObject
OleInitialize
CLSIDFromProgID
CoRegisterMessageFilter
OleUninitialize
StgOpenStorageOnILockBytes
CLSIDFromString

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

gdi32

Escape
GetTextColor
SelectObject
OffsetViewportOrgEx
ScaleWindowExtEx
SetViewportOrgEx
GetStockObject
SetViewportExtEx
SetTextColor
GetWindowExtEx
GetMapMode
GetDeviceCaps
PtVisible
SetMapMode
SetBkColor
TextOutW
CreateBitmap
DeleteDC
SaveDC
GetBkColor
GetViewportExtEx
SetWindowExtEx
DeleteObject
GetClipBox
RestoreDC
ExtSelectClipRgn
ExtTextOutW
GetRgnBox
ScaleViewportExtEx
RectVisible
GetObjectW
CreateRectRgnIndirect

comdlg32

GetFileTitleW

advapi32

RegSetValueExW
RegDeleteKeyW
RegQueryInfoKeyW
RegOpenKeyExW
RegOpenKeyW
RegEnumKeyW
RegCreateKeyExW
RegQueryValueW
RegCloseKey
RegEnumKeyExW
RegQueryValueExW

oledlg

OleUIBusyW

shlwapi

PathFindExtensionW
PathRemoveFileSpecW
PathIsUNCW
PathFileExistsW
PathFindFileNameW
PathStripToRootW
PathAppendW

kernel32

MoveFileW
CreateFileW
GetProcAddress
SizeofResource
GetVersionExW
SetFileTime
WriteFile
GetCalendarInfoA
GetFileAttributesW
InterlockedExchange
FindClose
GetSystemDefaultLangID
LocalFileTimeToFileTime
DeleteFileW
LoadResource
LockResource
LoadLibraryW
CreateDirectoryW
GetCurrentDirectoryW
GetThreadContext
CreateMutexW
ReadFile
ConvertDefaultLocale
GetACP
WaitForSingleObject
InitializeCriticalSection
lstrcmpiA
GetCurrentProcessId
FindResourceW
CloseHandle
EnumResourceNamesA
RaiseException
GetVersion
ReleaseMutex
RemoveDirectoryW
FindNextFileW
SystemTimeToFileTime
EnumResourceLanguagesW
ExitProcess
FreeLibrary
WideCharToMultiByte
GetModuleHandleW
GetThreadLocale
GetLocaleInfoA
FindFirstFileW
GetModuleFileNameW
GetLocaleInfoW
VirtualFree
MultiByteToWideChar
SetFilePointer
DeleteCriticalSection
InterlockedDecrement
lstrcpyW
lstrcmpA

Sections

.text
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dd6d6b437b940cbc8ab8e22e519c3f88

Headers

File Characteristics

Imports

user32

ole32

shell32

winspool.drv

gdi32

comdlg32

advapi32

oledlg

shlwapi

kernel32

Sections

.text Size: 98KB - Virtual size: 97KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 74KB - Virtual size: 73KB

.edata Size: 1024B - Virtual size: 244KB

.text
Size: 98KB - Virtual size: 97KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 74KB - Virtual size: 73KB

.edata
Size: 1024B - Virtual size: 244KB