bfd76b4ef281cbd2fe552dbe95c9eff3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bfd76b4ef281cbd2fe552dbe95c9eff3_JaffaCakes118
Size

236KB
MD5

bfd76b4ef281cbd2fe552dbe95c9eff3
SHA1

22962be6eb0ad7f1e4737dfb5bf95f447360c383
SHA256

b1a78ae613f6c44ea7b7e8601d427ac00619ab10d29fdcf9095996b266ccdac4
SHA512

a8b5b83c7bb3819bac55e82dc1434bf9964b9f821c16754a3fa6daa6c2e8342119c31bd58e61ac53562f2d94fc547998bcf838532b8839d5927b42235890b465
SSDEEP

3072:YZ5bDdTMuc++sK5mq/cFZX7hkee2Zgt5/Aw4Yh4eV8o68leY:YZxDdT++zK5mfPX1FsSQ8o6f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bfd76b4ef281cbd2fe552dbe95c9eff3_JaffaCakes118

Files

bfd76b4ef281cbd2fe552dbe95c9eff3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

09bc184b885a0f5b52d71bca649f8416

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetSystemDefaultLangID
LoadLibraryA
GetModuleHandleA
RaiseException
IsBadReadPtr
SetHandleCount
ExitProcess
FindClose
GetCommandLineA
LocalAlloc
ExitThread
VirtualAllocEx
CompareStringA
SizeofResource
GetCurrentThread
GetCommandLineW
GetVersionExA
lstrcpyA
LoadLibraryExA
GetProcAddress

shlwapi

SHGetValueA
SHStrDupA
PathFileExistsA
PathIsContentTypeA
SHQueryValueExA
SHDeleteKeyA
SHEnumValueA
PathGetCharTypeA
SHQueryInfoKeyA
PathIsDirectoryA

gdi32

GetDIBits
GetPaletteEntries
GetDIBColorTable
GetDCOrgEx
GetObjectA

oleaut32

SafeArrayUnaccessData
SafeArrayGetUBound
SafeArrayGetElement
SysFreeString
SysStringLen

user32

DefWindowProcA
InsertMenuA
GetIconInfo
DrawFrameControl
GetSystemMenu
GetSubMenu
SendMessageA
GetSysColorBrush
GetTopWindow
GetWindowTextA
DrawIcon
GetDC
DrawMenuBar
IsDialogMessageW
DeleteMenu
IsWindow
DefMDIChildProcA
MessageBeep
DrawIconEx
MapWindowPoints
MessageBoxA
GetCursorPos
CharLowerA
RegisterClipboardFormatA
PostMessageA
GetMessagePos
FrameRect
GetKeyNameTextA
DestroyWindow
CheckMenuItem
CreatePopupMenu
DestroyIcon
GetWindowPlacement
InflateRect
RegisterClassA
GetScrollInfo
EqualRect
CharToOemA
LoadStringA
GetKeyboardLayoutNameA
DestroyMenu
ScrollWindow
ScreenToClient
GetPropA
GetCursor
GetMenuItemID
RemovePropA
RegisterWindowMessageA
RemoveMenu
GetMenuStringA
EnumWindows
EmptyClipboard
GetFocus
PtInRect
ReleaseDC
DestroyCursor
PeekMessageW
OpenClipboard
GetWindowDC
InvalidateRect
GetForegroundWindow
LoadIconA
EnumThreadWindows
SetActiveWindow
IsWindowUnicode
MapVirtualKeyA
GetWindowLongA
IsWindowEnabled
KillTimer
GetClassInfoA
GetKeyboardLayout
GetKeyboardLayoutList
IsRectEmpty
CharNextW
GetClassNameA
GetKeyState
IntersectRect
LoadBitmapA
EnumChildWindows
FindWindowA
DispatchMessageA
GetClientRect
OffsetRect
CallNextHookEx
LoadKeyboardLayoutA
GetMenuItemCount
CharUpperBuffA
GetDlgItem
GetScrollPos
GetClipboardData
GetMenu
PostQuitMessage
GetWindowLongW
GetDCEx
PeekMessageA
GetLastActivePopup
IsWindowVisible
IsZoomed
CloseClipboard
BeginPaint
GetParent
CharNextA
GetKeyboardType
RedrawWindow
EnableWindow
FillRect
GetMenuItemInfoA
DefFrameProcA
IsIconic
GetCapture
GetScrollRange
DispatchMessageW
ReleaseCapture
ClientToScreen
IsChild
EnableMenuItem
GetWindowThreadProcessId
GetDesktopWindow
CreateIcon
IsDialogMessageA
GetKeyboardState
CallWindowProcA
ChildWindowFromPoint
GetActiveWindow
InsertMenuItemA

Sections

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc9
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc4
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc0
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc6
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc3
Size: 512B - Virtual size: 505B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09bc184b885a0f5b52d71bca649f8416

Headers

File Characteristics

Imports

kernel32

shlwapi

gdi32

oleaut32

user32

Sections

.text Size: 72KB - Virtual size: 72KB

.data Size: 150KB - Virtual size: 149KB

.rsrc9 Size: 1KB - Virtual size: 1KB

.rsrc4 Size: 5KB - Virtual size: 5KB

.rsrc0 Size: 1KB - Virtual size: 1KB

.rsrc6 Size: 2KB - Virtual size: 1KB

.rsrc3 Size: 512B - Virtual size: 505B

.rsrc Size: 1024B - Virtual size: 976B

.text
Size: 72KB - Virtual size: 72KB

.data
Size: 150KB - Virtual size: 149KB

.rsrc9
Size: 1KB - Virtual size: 1KB

.rsrc4
Size: 5KB - Virtual size: 5KB

.rsrc0
Size: 1KB - Virtual size: 1KB

.rsrc6
Size: 2KB - Virtual size: 1KB

.rsrc3
Size: 512B - Virtual size: 505B

.rsrc
Size: 1024B - Virtual size: 976B