d2e46ebda2adca93c71c5970e57d05c7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d2e46ebda2adca93c71c5970e57d05c7_JaffaCakes118
Size

308KB
MD5

d2e46ebda2adca93c71c5970e57d05c7
SHA1

164914b9f75c6446ac5221a8c5ee9bd3086c58d5
SHA256

681986b931e485c5f4caac9d8bf973a8616fee2c4b2035345f6a3daf754b41c3
SHA512

1bbf9e17cae92ecdb423e8c91a3bc657710b5223f5600997f59697a1e1033770427fa0c639a9e2b5b224c0c4a19d5a90677b735fb2d5e97b435a2a8f261fc72a
SSDEEP

6144:2K40/IUokhtFWtAApkQvxV39g6hEa2iUTFa49Gn5Qy3UixGjrrrfIeX:/PI7kFoAApZ9gBRzTF3GnikxY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d2e46ebda2adca93c71c5970e57d05c7_JaffaCakes118

Files

d2e46ebda2adca93c71c5970e57d05c7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e18e395dc4d900d2010edf3e5013ba3f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateNamedPipeW
SetStdHandle
GlobalDeleteAtom
GetModuleHandleA
SetCurrentDirectoryA
DuplicateHandle
MoveFileW
WritePrivateProfileStringW
AllocConsole
VirtualAlloc
GetCPInfo
WriteProcessMemory
GlobalAddAtomW
VirtualProtect
GetVersionExA
GetCommConfig
ExitProcess
UnhandledExceptionFilter
EnumSystemCodePagesA
ReleaseMutex
GetLargestConsoleWindowSize
OutputDebugStringW
GetSystemDirectoryW
OpenSemaphoreW
RaiseException
GetStartupInfoA
GetShortPathNameA
EnumSystemCodePagesW
GetVolumeInformationW
FindFirstFileExW
SizeofResource
CreateDirectoryW
CreateProcessA
CreateEventA
WriteFile
GetCommandLineW
GetSystemTimeAdjustment
DebugBreak
GetCurrentProcess
GlobalFindAtomW
WritePrivateProfileStructA
WriteConsoleOutputW
SwitchToFiber
GetBinaryTypeW
GetBinaryTypeA
GetCommandLineA
CreateMutexA

user32

OpenClipboard
ReplyMessage
LoadCursorFromFileW
DispatchMessageA
LoadCursorA
CloseDesktop
CharLowerA
CreateDialogIndirectParamA
IsCharUpperW
CharPrevW
SetWinEventHook
CallWindowProcA
MapVirtualKeyW
SetDlgItemInt
LoadImageA
ShowCaret
LoadMenuW
GetUserObjectInformationA
OemKeyScan
SwitchToThisWindow
SetClassLongA
GetShellWindow
SetActiveWindow
IsMenu
RegisterWindowMessageW
VkKeyScanA
ChildWindowFromPoint
MessageBoxIndirectW
GetClipboardFormatNameW
GetClientRect
DefWindowProcW
ClientToScreen
CharNextExA
DeleteMenu
OemToCharBuffA
ChildWindowFromPointEx
CheckDlgButton
CreateCursor
IsDlgButtonChecked
LookupIconIdFromDirectory
LoadKeyboardLayoutW
CallWindowProcW
GetKeyboardType
GetGuiResources
SetWindowLongW
SendMessageTimeoutA
CharLowerBuffW
SetMenuItemInfoA
GetIconInfo
GetWindow
GetDlgCtrlID
TranslateAcceleratorA
UnloadKeyboardLayout
GetScrollBarInfo
CharLowerBuffA
GrayStringW
IsIconic
SetScrollPos
IntersectRect
ValidateRgn
IsZoomed
GetWindowRgn
GetClassLongW
DestroyCursor
CopyIcon
DefDlgProcW
SystemParametersInfoW

gdi32

GetRgnBox
StretchDIBits
Pie
EnumFontsW
ExtCreateRegion
CreateBitmapIndirect
GetTextExtentExPointA
PatBlt
CreateFontA
TranslateCharsetInfo
InvertRgn
Rectangle
GetCharacterPlacementA
GetTextMetricsA
IntersectClipRect
SelectObject
GetCurrentPositionEx
GetRegionData
SaveDC
SetRectRgn

comdlg32

GetSaveFileNameA
ChooseFontW
PrintDlgW

advapi32

SetSecurityInfo
RegReplaceKeyW
AllocateAndInitializeSid
MakeAbsoluteSD
AddAce
IsValidAcl
EnumServicesStatusW
SetSecurityDescriptorOwner

shell32

SHLoadInProc
SHFileOperationW
SHGetPathFromIDListA
ExtractIconExW

ole32

WriteClassStg
CreateStreamOnHGlobal

oleaut32

QueryPathOfRegTypeLi
VariantChangeType
SysStringLen
SafeArrayUnaccessData
SafeArrayGetElement
SysFreeString
VariantCopy

comctl32

ImageList_Draw

shlwapi

SHSetValueW
StrCmpNA
PathFileExistsA
PathFileExistsW
PathUndecorateW
PathGetDriveNumberW
StrCmpIW
PathIsUNCServerW
AssocQueryStringW
HashData
SHRegGetUSValueW
PathIsRootA
SHGetValueA
PathIsFileSpecA
StrFormatKBSizeW
SHCreateStreamOnFileW
PathParseIconLocationW
PathUnquoteSpacesW
StrChrW

setupapi

SetupDiOpenDevRegKey
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList
SetupDiDestroyDriverInfoList
SetupGetInfFileListA
SetupTermDefaultQueueCallback
SetupDiEnumDriverInfoA
SetupOpenAppendInfFileA
SetupDiCreateDeviceInfoA
SetupGetLineTextW

Sections

.text
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e18e395dc4d900d2010edf3e5013ba3f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

setupapi

Sections

.text Size: 260KB - Virtual size: 258KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 36KB - Virtual size: 32KB

.text
Size: 260KB - Virtual size: 258KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 36KB - Virtual size: 32KB