bc7aba9db2ab9216cccfe99d97bb8920_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bc7aba9db2ab9216cccfe99d97bb8920_JaffaCakes118
Size

247KB
MD5

bc7aba9db2ab9216cccfe99d97bb8920
SHA1

30172460e92b1d5a29ca53538ad686e8fd08196f
SHA256

2241469159901b93c782dee98ab96d487ef930a9e672b8b96150c857201d9c1c
SHA512

38bcc47d87943fbbc9c6c299482fd2ed45d304226dc4e00747647501d3eb9775cbf1a098c7fc1ce67f8661eee95317f7f16efb30b2e320ec7ff4ed2d8fd1d4ee
SSDEEP

6144:gARtq9pkKE3GKTy1ZyW5+I0XwHIk+0Rh/2ZCvkh:9y5KyeWgGU0vw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc7aba9db2ab9216cccfe99d97bb8920_JaffaCakes118

Files

bc7aba9db2ab9216cccfe99d97bb8920_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2f1e9709b11edbc4eae1bb5e57b81d1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetAce
DuplicateTokenEx
CryptVerifySignatureW
AddAce
ChangeServiceConfigW
RegDeleteKeyA
CheckTokenMembership
GetAclInformation
SetSecurityDescriptorGroup
OpenServiceW
ConvertSidToStringSidA
OpenSCManagerA
RegEnumKeyExW
RegQueryValueExW
SetServiceStatus
SetEntriesInAclW
CopySid
AccessCheck

ole32

ReadFmtUserTypeStg
CoMarshalInterThreadInterfaceInStream
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
CoUnmarshalInterface
OleCreateLinkToFile
CoTaskMemRealloc
StringFromCLSID
OleCreateLinkFromData
ReadClassStg

shlwapi

UrlUnescapeW

oleaut32

SafeArrayPutElement

version

VerQueryValueA

shell32

CommandLineToArgvW
ShellExecuteA
SHGetFileInfoW

user32

GetClipboardData
CopyRect
CheckMenuRadioItem
DdeConnectList
CharUpperBuffW
DestroyIcon
GetKeyboardType
PostThreadMessageA
FrameRect

kernel32

GetExitCodeThread
MulDiv
CloseHandle
GetLastError
CopyFileA
WinExec
LocalAlloc
GetTempPathA
FindNextChangeNotification
GetCurrentThreadId
lstrcmpW
OutputDebugStringA
MoveFileW
ExitProcess
GetComputerNameW
GetStartupInfoA
VirtualProtect
VerifyVersionInfoW
WaitForSingleObject
GetPriorityClass
GetFileInformationByHandle
GlobalAddAtomW
ReleaseMutex
WriteConsoleW
GetTickCount
VirtualAlloc
GetLocalTime
GetOverlappedResult
GetFileSizeEx
UnmapViewOfFile
CreateThread
CompareStringW
DeleteTimerQueueEx
FindResourceW
GetSystemInfo
PulseEvent
GetVersionExW
GetProcessHeap
FormatMessageA
GetVolumeInformationW
GetDateFormatW
GetPrivateProfileIntA
RemoveDirectoryW
GetQueuedCompletionStatus
DeleteCriticalSection
GetSystemPowerStatus
GetExitCodeProcess
OutputDebugStringW
GetModuleHandleW
FreeResource
GetLogicalDrives
SwitchToThread
SetWaitableTimer
GetUserGeoID
CreateEventA
IsDBCSLeadByteEx
MoveFileA
InterlockedExchange
GetSystemTime
GlobalLock
GetStringTypeExA
SearchPathA
FindFirstFileW
ResumeThread
WriteFile
EnterCriticalSection
GetStdHandle
GlobalHandle
QueryDosDeviceA
CreateDirectoryA
GetWindowsDirectoryA
DeleteFileW
GetStringTypeA
GetModuleHandleA

gdi32

CreateDCW
EnumFontFamiliesW

winspool.drv

EnumPortsA

comctl32

ImageList_SetBkColor

comdlg32

ChooseColorA
CommDlgExtendedError
GetOpenFileNameA

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
wcsstr
wcsncmp
atol
_wsplitpath
_setmbcp
_splitpath
iswalnum
wcslen
_expand
bsearch
wcstok
atoi
toupper
wcstod
_strlwr
calloc
wcspbrk
wcscmp
wcstol
_wcsdup
towlower
isdigit
ctime
_vsnprintf
_CxxThrowException
_purecall
_iob
swscanf
_vsnwprintf
sprintf
_beginthreadex
_mbsrchr
wcschr

Sections

.text
Size: 216KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f1e9709b11edbc4eae1bb5e57b81d1d

Headers

File Characteristics

Imports

advapi32

ole32

shlwapi

oleaut32

version

shell32

user32

kernel32

gdi32

winspool.drv

comctl32

comdlg32

msvcrt

Sections

.text Size: 216KB - Virtual size: 216KB

.data Size: 28KB - Virtual size: 28KB

.rsrc Size: 1024B - Virtual size: 752B

.text
Size: 216KB - Virtual size: 216KB

.data
Size: 28KB - Virtual size: 28KB

.rsrc
Size: 1024B - Virtual size: 752B