bdce93ec2a930cbbc21bee91d42d6987_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

bdce93ec2a930cbbc21bee91d42d6987_JaffaCakes118
Size

181KB
MD5

bdce93ec2a930cbbc21bee91d42d6987
SHA1

14484279e657b1ce0b819cec550268f6ba16f7e0
SHA256

e5662f50fb3241a3695bbcd350ff2c258879a7d12a0431690d3f08856f324b61
SHA512

ec2778f3aad86c0eb3e4a0422cfcf08d572fb3eccded8dd4bcd5278123fc69ea529cf397a793ffa1e3a59353cd7da13981ed4dc48b7cd0765e881d949b2a0b76
SSDEEP

3072:lJZcJkapqDjsCnXUtBzCR+yFiiLqhRb1390KV56euVLKXH4vrJdIe2p8:JcJkapqDnXkBzU+4qHbVBLuVO34DnIH8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bdce93ec2a930cbbc21bee91d42d6987_JaffaCakes118

Files

bdce93ec2a930cbbc21bee91d42d6987_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bb3d69e01298ff9ce6ad8e1646cef797

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyW
RegOpenKeyExW
RegQueryValueW
RegOpenKeyW
RegSetValueExW
RegEnumKeyExW
RegDeleteKeyW
RegQueryInfoKeyW
RegCreateKeyExW
RegCloseKey
RegQueryValueExW

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

comdlg32

GetFileTitleW

user32

AdjustWindowRectEx
CharUpperW
SetForegroundWindow
GetMenu
GetMessageTime
SetRect
RemovePropW
GetClassLongW
CopyAcceleratorTableW
GetClassInfoW
IntersectRect
GetClientRect
WinHelpW
CallWindowProcW
GetClassInfoExW
CharNextW
GetTopWindow
GetNextDlgTabItem
MessageBeep
RegisterClassW
RegisterWindowMessageW
InvalidateRect
SetPropW
GetMessagePos
LoadIconW
GetNextDlgGroupItem
MapWindowPoints
IsWindow
OffsetRect
SetActiveWindow
InvalidateRgn
GetPropW
EqualRect
IsChild
UpdateWindow
DefWindowProcW
SendDlgItemMessageA
GetForegroundWindow
CreateWindowExW
GetWindowPlacement
IsRectEmpty
IsIconic
DestroyMenu

kernel32

SystemTimeToFileTime
GetSystemDefaultLangID
ReadFile
SetFileTime
FindFirstFileW
GetCalendarInfoA
MultiByteToWideChar
SetFilePointer
ConvertDefaultLocale
GetLocaleInfoA
LoadResource
GetProcAddress
RemoveDirectoryW
GetCurrentDirectoryW
CreateMutexW
InitializeCriticalSection
GetVersionExW
WideCharToMultiByte
GetThreadContext
FindNextFileW
CreateDirectoryW
LoadLibraryW
DeleteFileW
GetFileAttributesW
WaitForSingleObject
LocalFileTimeToFileTime
FindClose
CloseHandle
InterlockedExchange
MoveFileW
lstrcpyW
EnumResourceNamesA
RaiseException
LockResource
EnumResourceLanguagesW
FreeLibrary
GetThreadLocale
DeleteCriticalSection
ExitProcess
CreateFileW
VirtualFree
GetModuleFileNameW
GetCurrentProcessId
ReleaseMutex
WriteFile
GetVersion
SizeofResource
FindResourceW
InterlockedDecrement
GetLocaleInfoW
GetModuleHandleW
lstrcmpiA
GetACP
lstrcmpA

gdi32

GetDeviceCaps
ExtTextOutW
GetObjectW
DeleteDC
CreateBitmap
SaveDC
TextOutW
PtVisible
GetClipBox
GetStockObject
GetViewportExtEx
SetWindowExtEx
SetMapMode
ExtSelectClipRgn
GetRgnBox
GetWindowExtEx
SelectObject
GetBkColor
OffsetViewportOrgEx
Escape
ScaleWindowExtEx
SetViewportExtEx
SetBkColor
ScaleViewportExtEx
SetViewportOrgEx
SetTextColor
GetMapMode
RectVisible
GetTextColor
DeleteObject
RestoreDC
CreateRectRgnIndirect

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

ole32

CoCreateInstance
CLSIDFromProgID
CoRevokeClassObject
CoGetClassObject
OleIsCurrentClipboard
StgOpenStorageOnILockBytes
OleInitialize
CoRegisterMessageFilter
CreateILockBytesOnHGlobal
CoUninitialize
CoTaskMemAlloc
CoInitialize
CoTaskMemFree
OleFlushClipboard
StgCreateDocfileOnILockBytes
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromString

shlwapi

PathRemoveFileSpecW
PathFileExistsW
PathFindExtensionW
PathIsUNCW
PathFindFileNameW
PathStripToRootW
PathAppendW

oledlg

OleUIBusyW

Sections

.text
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bb3d69e01298ff9ce6ad8e1646cef797

Headers

File Characteristics

Imports

advapi32

shell32

comdlg32

user32

kernel32

gdi32

winspool.drv

ole32

shlwapi

oledlg

Sections

.text Size: 102KB - Virtual size: 102KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 71KB - Virtual size: 71KB

.edata Size: 1024B - Virtual size: 244KB

.text
Size: 102KB - Virtual size: 102KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 71KB - Virtual size: 71KB

.edata
Size: 1024B - Virtual size: 244KB