bc33188d72b9c53665cb88d4b6905b58_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bc33188d72b9c53665cb88d4b6905b58_JaffaCakes118
Size

131KB
MD5

bc33188d72b9c53665cb88d4b6905b58
SHA1

5d605c5ef3a0e36b001e47f202dc1784650f3ec0
SHA256

c0246afdeba61530560f010a348ad5cdbb5167788a5579a3ea59e89098c2faab
SHA512

3be99adbe081e435dfa08cc5e0b352dd9834fef4093d5fbffd6b51831a70f5cbd54a61df2a4f54444ca79528175160b066c10b69b27f7499aac46052cee739ae
SSDEEP

3072:s9K6IOaCw/lNyOxFdq/34gDdmNbmazcOs8jmyFfnYysl:d4w/lNI34Sazvs8j7FQ9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc33188d72b9c53665cb88d4b6905b58_JaffaCakes118

Files

bc33188d72b9c53665cb88d4b6905b58_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7f257325a96fabc1b6310d0803efbfdb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindAtomW
EnumTimeFormatsW
SuspendThread
GetStringTypeW
GetStartupInfoA
GetThreadLocale
SystemTimeToFileTime
GetDateFormatW
LoadLibraryA
GlobalGetAtomNameW
GetEnvironmentVariableW
GetVersionExW
GetStringTypeA
GetThreadPriority
ExitProcess
CompareFileTime
GetComputerNameA
VirtualAlloc
LoadResource
SearchPathW
lstrcpyn
GetCPInfo

user32

DestroyWindow
GetClassInfoExW
GetDC
CopyImage
GetSysColor
GetWindowTextA
InsertMenuW
CreateDialogParamA
GetMenuItemID
GetDlgItem
CheckRadioButton
InvalidateRgn
CreateDialogIndirectParamW
GetMenuInfo
EnumDesktopsA
GetWindowRgn
CreateMenu
LoadCursorA
mouse_event
ShowCaret
IsDlgButtonChecked
GetWindowLongW
RegisterWindowMessageW
MoveWindow
LoadMenuIndirectA
MonitorFromRect
GetMenuStringW
SetWindowLongA
FrameRect
LoadCursorW
InsertMenuA
InsertMenuItemA
SetCursor
CharLowerA
GetWindowTextLengthW
RegisterWindowMessageA
UnregisterClassA
PeekMessageA
CloseWindow
DialogBoxParamW
ShowWindow
GetMenuItemInfoW
GetDlgItemInt
LoadIconA
wvsprintfW

gdi32

CreateCompatibleBitmap
RemoveFontResourceA
RemoveFontResourceW
StartPage
SetViewportOrgEx
CopyMetaFileW
UnrealizeObject
CreateColorSpaceA
GetViewportExtEx
AddFontResourceA
SetDCPenColor
InvertRgn

advapi32

RegOpenKeyExA
RegQueryInfoKeyW
RegOpenKeyExW
RegDeleteValueW

shell32

SHFreeNameMappings

inetcomm

MimeOleCreateBody
MimeOleSetPropW
CreateIMAPTransport
EssMLHistoryEncodeEx
MimeOleGetRelatedSection
MimeOleCreateVirtualStream
CreateRangeList
MimeOleGetPropertySchema
MimeOleAlgNameFromSMimeCap
MimeOleFindCharset
MimeOleSetBodyPropW
MimeEditDocumentFromStream
MimeEditCreateMimeDocument
MimeOleGetDefaultCharset
HrAttachDataFromFile
MimeOleInetDateToFileTime

Sections

.J
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.n
Size: 512B - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.7
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.&/-W
Size: 2KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.K
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.6?8+'
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.83o
Size: 512B - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 205KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7f257325a96fabc1b6310d0803efbfdb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

inetcomm

Sections

.J Size: 9KB - Virtual size: 12KB

.n Size: 512B - Virtual size: 34KB

.7 Size: 3KB - Virtual size: 3KB

.&/-W Size: 2KB - Virtual size: 41KB

.K Size: 1024B - Virtual size: 12KB

.6?8+' Size: 3KB - Virtual size: 12KB

.83o Size: 512B - Virtual size: 24KB

.rsrc Size: 205KB - Virtual size: 248KB

.J
Size: 9KB - Virtual size: 12KB

.n
Size: 512B - Virtual size: 34KB

.7
Size: 3KB - Virtual size: 3KB

.&/-W
Size: 2KB - Virtual size: 41KB

.K
Size: 1024B - Virtual size: 12KB

.6?8+'
Size: 3KB - Virtual size: 12KB

.83o
Size: 512B - Virtual size: 24KB

.rsrc
Size: 205KB - Virtual size: 248KB