ce87070db2bb0bc1d905f6aedd3cc345_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ce87070db2bb0bc1d905f6aedd3cc345_JaffaCakes118
Size

111KB
MD5

ce87070db2bb0bc1d905f6aedd3cc345
SHA1

418d4c39abc4af64201f6a1ead535252ad8aa309
SHA256

fe79d74101f5e48afce900dc6c7ceb7659d57901119af2c23e1a18b3aa94ccbb
SHA512

25e8d47adcce02e89ab22c732353305b5f6123c978fd3aff8610ddaafd70f144a6d3c3f30729c72d2a766ba134b0373c9478dddc57a8bdfd73b98c60ac5abf67
SSDEEP

1536:7RwKfXuXlZm9ml7kR/35mRHjr5QSCWqC/uDUQ+e/JGUk5fJo6i9DmAXnnAD8Ge:lkm2njPLfOUYUUk5fJxi9yAXcze

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce87070db2bb0bc1d905f6aedd3cc345_JaffaCakes118

Files

ce87070db2bb0bc1d905f6aedd3cc345_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e29ebf4c2521a34a3fc3dce2c0c021e7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
GetDateFormatA
MulDiv
ReleaseMutex
GetVersionExA
GetTimeFormatA
EnterCriticalSection
FlushInstructionCache
FindClose
FindFirstFileA
LocalFree
FormatMessageA
CreateProcessA
ExpandEnvironmentStringsA
SetCurrentDirectoryA
GetCurrentProcess
CreateFileA
GlobalUnlock
GetCurrentDirectoryA
ReadFile
lstrcmpiA
GetProfileStringA
GlobalAlloc
lstrcmpA
LockResource
LoadResource
FindResourceA
CreateThread
lstrcatA
IsDBCSLeadByte
CreateFileMappingA
GetLastError
MapViewOfFile
CreateMutexA
GetModuleFileNameA
lstrcpynA
OutputDebugStringA
DebugBreak
lstrlenA
InterlockedIncrement
GetModuleHandleA
GetStartupInfoA
WriteFile
SetFilePointer
GetFileSize
InitializeCriticalSection
DeleteCriticalSection
HeapDestroy
LoadLibraryA
GetCurrentThreadId
MultiByteToWideChar
lstrlenW
GetProcAddress
FreeLibrary
UnmapViewOfFile
WideCharToMultiByte
lstrcpyA
CloseHandle
GetCommandLineA
WaitForSingleObject
lstrcpynW
ResumeThread
GlobalLock
GetFullPathNameA
InterlockedDecrement
GlobalFree

user32

SetMenuItemInfoA
GetMenuItemInfoA
DestroyMenu
GetMenuItemCount
AppendMenuA
SetMenuDefaultItem
CreatePopupMenu
TrackPopupMenuEx
RemoveMenu
IntersectRect
TranslateAcceleratorA
IsDialogMessageA
CreateMenu
GetMenu
SetTimer
TrackPopupMenu
GetCursorPos
GetSubMenu
GetMenuStringA
CreateDialogParamA
EnableMenuItem
InsertMenuA
DeleteMenu
GetWindowPlacement
CharLowerA
SetWindowTextA
wsprintfA
LoadMenuA
LoadAcceleratorsA
UpdateWindow
GetClassInfoExA
LoadStringW
CreateWindowExA
FindWindowA
SendMessageTimeoutA
DefWindowProcA
MessageBoxA
InSendMessage
ReplyMessage
PostThreadMessageA
DestroyWindow
LoadStringA
PeekMessageA
GetMessageA
DispatchMessageA
PostMessageA
CharNextA
wvsprintfA
GetWindowLongA
GetWindow
TranslateMessage
MessageBeep
KillTimer
LoadImageA
SetWindowPlacement
ShowWindow
CharUpperA
GetWindowRect
SystemParametersInfoA
GetClientRect
MapWindowPoints
SetWindowPos
EndDialog
GetParent
RegisterClassExA
IsWindowVisible
IsWindow
SetWindowLongA
LoadCursorA
PostQuitMessage
GetWindowTextA
GetWindowTextLengthA
SetCursor
ClientToScreen
SetDlgItemTextA
GetDlgItem
SendMessageA
PtInRect
MoveWindow
EnableWindow
ReleaseDC
GetDC
InvalidateRect
GetDlgItemInt
IsDlgButtonChecked
SetFocus
GetSysColor
OffsetRect
SetDlgItemInt
CheckDlgButton
CopyRect
FrameRect
InflateRect
FillRect
DrawFocusRect
DrawTextA
DialogBoxParamA
keybd_event
GetKeyState
GetActiveWindow
CallWindowProcA
GetSystemMetrics
SetForegroundWindow

gdi32

GetObjectA
SetTextColor
SetBkMode
DeleteObject
CreateSolidBrush
GetDeviceCaps
GetTextExtentPoint32A
SelectObject
DeleteDC
GetTextMetricsA
RestoreDC
SetViewportOrgEx
SaveDC
CreateDCA
EndDoc
SetBkColor
EndPage
StartPage
AbortDoc
StartDocA
ResetDCA
CreateFontIndirectA
GetStockObject

winspool.drv

GetPrinterA
ClosePrinter
OpenPrinterA

comdlg32

GetSaveFileNameA
GetOpenFileNameA
PageSetupDlgA
ChooseFontA

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA

shell32

DragQueryFileA
DragFinish
DragAcceptFiles
SHChangeNotify
ShellExecuteA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

comctl32

ord17
ImageList_LoadImageA

msvcrt

exit
_exit
_onexit
__dllonexit
abs
realloc
_purecall
_mbspbrk
_mbscmp
_mbsicmp
memset
_mbsrchr
_mbsstr
malloc
_mbschr
memmove
_ismbcspace
free
_beginthreadex
atoi
_ismbcdigit
wcslen
_XcptFilter
??2@YAPAXI@Z
memcpy
__getmainargs
_initterm
_acmdln
__set_app_type
_adjust_fdiv
__p__commode
__p__fmode
__setusermatherr
_except_handler3
_controlfp
??3@YAXPAX@Z

Sections

.text
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 43KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e29ebf4c2521a34a3fc3dce2c0c021e7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

version

comctl32

msvcrt

Sections

.text Size: 58KB - Virtual size: 57KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 2KB - Virtual size: 2KB

.tls Size: 512B - Virtual size: 12B

.rsrc Size: 43KB - Virtual size: 66KB

.text
Size: 58KB - Virtual size: 57KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 2KB - Virtual size: 2KB

.tls
Size: 512B - Virtual size: 12B

.rsrc
Size: 43KB - Virtual size: 66KB