ce68540129eb6fca7bf0fabca39d8a95_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ce68540129eb6fca7bf0fabca39d8a95_JaffaCakes118
Size

97KB
MD5

ce68540129eb6fca7bf0fabca39d8a95
SHA1

e22a55e746e0881e1607753ab42aa97aaa201438
SHA256

60237c0a9745bcaaf525064c0a5dba52bf335c463fa6c150193cb1f643eba176
SHA512

afa411c24c28b0e8c1bb79ca80177042033fa0f29380b68a1b88c87a668d87c2411af822e95b3d0bfb80b2fa03fd7904f429c9d9aaa0bcea63dfd67c2e4672ea
SSDEEP

3072:FhjIuKwSJ5L9Ykc8cuTrwf6Z9BI4m63EokW+O:F5bKFWklcWrwa9W63E3q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce68540129eb6fca7bf0fabca39d8a95_JaffaCakes118

Files

ce68540129eb6fca7bf0fabca39d8a95_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1d9523905cc4a2c82225b915493b08ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

MultiByteToWideChar
GetStringTypeA
GetStartupInfoA
VirtualProtect
lstrlenA
LocalFree
InterlockedCompareExchange
GetTempPathW
GetModuleHandleA
IsDBCSLeadByte
SetCurrentDirectoryA
UnhandledExceptionFilter

user32

SetScrollPos
GetMenu
GetForegroundWindow
ShowOwnedPopups
GetTopWindow
SetForegroundWindow
EndPaint
CharLowerA
GetSysColorBrush
GetSysColor
DeleteMenu

msvcrt

realloc
strchr
_except_handler3
_snprintf
__getmainargs
exit
_assert
_flsbuf
_unlink
strncat
_adjust_fdiv
__setusermatherr
__set_app_type
__p__fmode
_acmdln
_initterm
sqrt
_XcptFilter
__p__commode
abort
_strnicmp

shell32

SHFileOperationW
Shell_NotifyIconW
SHGetSpecialFolderPathA
SHGetPathFromIDListA
SHGetSettings
SHAddToRecentDocs
SHGetDesktopFolder
SHBindToParent
ExtractIconW
ExtractIconA
DragQueryFileA

advapi32

RegSetValueExW
AdjustTokenPrivileges
RegSetValueExA
InitiateSystemShutdownA
RegDeleteKeyA
CryptDestroyHash
InitializeSecurityDescriptor
LookupPrivilegeValueA
CryptCreateHash

oleaut32

LoadTypeLib
SysAllocStringByteLen
SetErrorInfo
GetActiveObject
SysStringByteLen
SafeArrayPutElement
SafeArrayRedim
SysReAllocStringLen
GetErrorInfo
SafeArrayGetUBound

comctl32

ImageList_Remove
CreatePropertySheetPageA
ImageList_LoadImageW
ImageList_SetImageCount
CreatePropertySheetPageW
ImageList_GetImageCount
ImageList_LoadImageA

ole32

IsEqualGUID
CoGetInterfaceAndReleaseStream
StgOpenStorageOnILockBytes
CoCreateInstance
CoRegisterClassObject
CoTaskMemRealloc
OleInitialize
CreateStreamOnHGlobal

Sections

.text
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1d9523905cc4a2c82225b915493b08ad

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

shell32

advapi32

oleaut32

comctl32

ole32

Sections

.text Size: 67KB - Virtual size: 66KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 25KB - Virtual size: 25KB

.text
Size: 67KB - Virtual size: 66KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 25KB - Virtual size: 25KB