bcb0895aa88b9f8c5008b8a0714c99ba_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bcb0895aa88b9f8c5008b8a0714c99ba_JaffaCakes118
Size

293KB
MD5

bcb0895aa88b9f8c5008b8a0714c99ba
SHA1

0e4d48f7af3e4ed0d08fedd3e1d01fcf3d9bec63
SHA256

0420dc46d9a53d594a550364ef6365a4856a4003c280777f2ed22c55323deb06
SHA512

43217a3fef136459f5d6b239257ed61637694773181d15a7d2ee648f061a446e2b34d01c74ec928ae48b1d898a18ad228af81dc8101b9691c440a715e05e4f81
SSDEEP

6144:q1/+6cRhggGi1Pw9QcubVseGc3v55O48lQ3Bizu:O/+hRSgGi1IacCVsqvH8kizu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bcb0895aa88b9f8c5008b8a0714c99ba_JaffaCakes118

Files

bcb0895aa88b9f8c5008b8a0714c99ba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3dd790eb1f781bb5f807f2f9e71f26b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDBCSLeadByteEx
EnumCalendarInfoW
GetComputerNameW
ExitProcess
SetCommTimeouts
GetCommConfig
CreateEventA
GetTimeZoneInformation
VirtualFree
EnumTimeFormatsW
GetFullPathNameA
LoadLibraryExW
GlobalFindAtomA
GetModuleFileNameW
GetWindowsDirectoryA
SetProcessAffinityMask
GetShortPathNameA
PrepareTape
GetTapeParameters
SetProcessWorkingSetSize
SetEnvironmentVariableW
EnumDateFormatsW
GetCommandLineA
lstrlenA
VirtualAlloc

user32

SetRectEmpty
GetKeyState
keybd_event
GetKeyNameTextW
GetDlgItemInt
CharLowerBuffA
CreateDialogParamW
FlashWindowEx
PeekMessageA
OpenInputDesktop
SetParent
SwapMouseButton
EnableWindow
SetProcessDefaultLayout
DefDlgProcA
RegisterClassA
GetCursorPos
DestroyCursor
GetKeyboardLayoutList
GetClassInfoW
ShowOwnedPopups
GetCapture
GetMessageA
CharPrevA
BroadcastSystemMessageA
IsDialogMessageW
ReplyMessage
GetDlgItemTextA
GetClipboardViewer
SetScrollRange
IsWindowVisible
CreateDialogIndirectParamW
RemoveMenu
GetSystemMetrics
SetActiveWindow
EndPaint
CreateWindowStationW
GetActiveWindow
SetWindowTextW
AppendMenuA
ShowScrollBar
ScrollDC
RegisterHotKey
UnregisterDeviceNotification
SetDlgItemInt
DefWindowProcA
EndDialog
DrawFrameControl
LoadKeyboardLayoutW
CloseWindow
SetWindowContextHelpId
UnregisterClassA
GetMenuState
CharUpperA
CloseWindowStation

gdi32

CreatePenIndirect
AbortDoc
CreateEnhMetaFileA
EnumFontFamiliesExA
SelectPalette
GetTextCharsetInfo
GetCurrentPositionEx
GetMapMode
CreateHatchBrush
DeleteMetaFile
WidenPath
CloseEnhMetaFile
CreateDCW
CreateICA
GetTextColor
ModifyWorldTransform
SaveDC
OffsetRgn
CombineRgn

comdlg32

GetSaveFileNameA
ReplaceTextW
ChooseFontW

advapi32

EnumServicesStatusA
DestroyPrivateObjectSecurity
RegOpenKeyA
RegSetValueW
RegSaveKeyA
SetTokenInformation
CryptDestroyHash
AdjustTokenPrivileges
GetAce
SetSecurityDescriptorOwner
ControlService
RegRestoreKeyA
EnumDependentServicesW
LookupPrivilegeDisplayNameA

shell32

SHChangeNotify
SHGetSettings
SHLoadInProc
SHGetDesktopFolder
FindExecutableA

ole32

ReadFmtUserTypeStg
CoSwitchCallContext
CoRegisterMallocSpy
MkParseDisplayName
PropVariantCopy
OleCreate
OleFlushClipboard
OleGetIconOfClass
OleSetMenuDescriptor
CoQueryProxyBlanket

oleaut32

QueryPathOfRegTypeLi
SysFreeString
SafeArrayGetElement

comctl32

ImageList_Draw
ImageList_ReplaceIcon

shlwapi

PathIsSameRootW
SHOpenRegStream2W
PathUnquoteSpacesA
PathIsDirectoryW
SHStrDupW
SHRegQueryUSValueW
AssocQueryKeyW

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 284KB - Virtual size: 283KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3dd790eb1f781bb5f807f2f9e71f26b6

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 284KB - Virtual size: 283KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 284KB - Virtual size: 283KB