c8bc187d019cc5e53eff7572a16ccbf5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c8bc187d019cc5e53eff7572a16ccbf5_JaffaCakes118
Size

277KB
MD5

c8bc187d019cc5e53eff7572a16ccbf5
SHA1

0b538f8ccc7eb51d1c426a17270e6436f1614a75
SHA256

1e73277bb764e4aea5293d14c19ab04f64ee2e0e38334a99b561312c4def187b
SHA512

94f01baed3a402a28eafc7eb40d4cb821f69ebe3e8b22090c56ccd6462726904bfa2c590697ca840cc2d92d00af2d9ec8315441a34c777acff132fafc625d4ac
SSDEEP

6144:FXJ4DZDz1bJE8UcG4CX0DS5uaj8fFzx234IJ:FODZD5bUj4CX0DSoYoIJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8bc187d019cc5e53eff7572a16ccbf5_JaffaCakes118

Files

c8bc187d019cc5e53eff7572a16ccbf5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

497e3ab50100a2bc946b6965e3af0045

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleMode
GetConsoleCP
SetFilePointer
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapSize
GetFileType
SetHandleCount
HeapCreate
HeapReAlloc
VirtualAlloc
VirtualFree
InitializeCriticalSectionAndSpinCount
LCMapStringA
HeapFree
GetProcAddress
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetModuleFileNameA
GetStdHandle
WriteFile
RtlUnwind
RaiseException
GetStartupInfoA
GetCommandLineA
IsDebuggerPresent
GetCurrentProcess
TerminateProcess
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
FlushFileBuffers
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetTempPathA
CloseHandle
GetCurrentThreadId
GetModuleHandleA
SetCommMask
LockResource
DeleteCriticalSection
LoadLibraryA
ExitProcess
GetLastError
GlobalUnlock
MultiByteToWideChar
ReadFile
MulDiv
CreateEventA
SizeofResource
Sleep
LoadLibraryW
FindResourceExA
EnumResourceTypesA
LeaveCriticalSection
EnterCriticalSection
HeapAlloc
GetModuleHandleW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetCommTimeouts
WaitForSingleObject
GlobalLock
UpdateResourceA
ClearCommError
LoadResource
FreeResource
CreateFileA
SetLastError

user32

MoveWindow
GetWindow
SendMessageW
LoadImageA
RegisterClassA
SetWindowTextA
GetSystemMetrics
RegisterClassW
SystemParametersInfoA
LoadCursorA
DestroyIcon
SetScrollInfo
FindWindowA
GetWindowThreadProcessId
EndPaint
DestroyWindow
ScreenToClient
GetWindowRect
PostQuitMessage
GetMenuItemID
LoadStringA
GetParent
TrackMouseEvent
LoadIconA
LoadCursorW
MenuItemFromPoint
GetClientRect
SendMessageA
BeginPaint
SetScrollRange
SetSysColors
GetMenu
LoadIconW
SetWindowLongA
MessageBoxA
InvalidateRect
GetWindowLongA
CreateWindowExA
SetScrollPos
SetClassLongA
GetDlgItem
DefWindowProcA
GetDesktopWindow
GetSysColor
SetWindowPos
GetCursorPos
GetMenuStringA
GetMenuItemCount
IsWindow
DefMDIChildProcA

gdi32

CreatePolygonRgn
MoveToEx
BitBlt
LineTo
DeleteDC
GetDeviceCaps
DeleteObject
SelectObject
CreateCompatibleDC
DPtoLP
SetMapMode
GetMapMode
RealizePalette
SelectPalette
CreatePen
GetObjectA
GetStockObject

comdlg32

CommDlgExtendedError
GetOpenFileNameA
GetSaveFileNameA
PrintDlgA
PageSetupDlgA

advapi32

RegCloseKey
RegSetValueExW
RegOpenKeyExW

shell32

ExtractIconExA
SHGetFileInfoA

ole32

OleGetClipboard
ReleaseStgMedium

oleaut32

OleLoadPicturePath
SysFreeString

shlwapi

PathIsRelativeW
PathFileExistsW
SHCreateStreamOnFileA

comctl32

ImageList_ReplaceIcon
ImageList_GetImageCount
CreatePropertySheetPageA
ImageList_LoadImageA
ImageList_Create
ord413
ord17

wldap32

ord13
ord143
ord16
ord211

Sections

.text
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

497e3ab50100a2bc946b6965e3af0045

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

wldap32

Sections

.text Size: 87KB - Virtual size: 87KB

.rdata Size: 131KB - Virtual size: 130KB

.data Size: 5KB - Virtual size: 17KB

.rsrc Size: 53KB - Virtual size: 52KB

.text
Size: 87KB - Virtual size: 87KB

.rdata
Size: 131KB - Virtual size: 130KB

.data
Size: 5KB - Virtual size: 17KB

.rsrc
Size: 53KB - Virtual size: 52KB