d10076410e1d4c224af603a57f267efe_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d10076410e1d4c224af603a57f267efe_JaffaCakes118
Size

187KB
MD5

d10076410e1d4c224af603a57f267efe
SHA1

619f010f1930c1de9da47ffa9a6889f1f5e9544b
SHA256

72479ba9b002f7030e799c16f58dc4616b4c1531a715653a0caa1bf9be5d3ea0
SHA512

41ad9382cd12dd075208b4e0a2b247970b74fdff8c2ff4650ebc33a98e0c4194e72afb69905ba5f83b696bb7a941917bda4f5140204f7769e95918504a85db56
SSDEEP

3072:5NeObf7ck2oIuJj8O0dqJX+3WkF1aYarL5XPn9zHRVceZ8M7:6Obf7WoVwOhJXgWkmYW5X/9zHRVcW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d10076410e1d4c224af603a57f267efe_JaffaCakes118

Files

d10076410e1d4c224af603a57f267efe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2fcefe0cc0b9cdf1302025bcaaa5533e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectObject
SelectPalette
GetDIBits
ExtEscape
DeleteDC
CreateCompatibleDC
StretchDIBits
DeleteObject
SetStretchBltMode
GetObjectA
RealizePalette
GetStockObject
CreateFontA
CreateSolidBrush
CreateDIBitmap
GetDeviceCaps
CreateCompatibleBitmap
CreateDIBSection
BitBlt
SetBkMode

user32

SetRect
FillRect
DefWindowProcA
UnregisterClassA
FindWindowA
CallWindowProcA
RedrawWindow
IsWindow
wsprintfA
RegisterClassExA
SetTimer
GetClassInfoExA
GetClassNameA
GetSysColor
ShowWindow
InvalidateRgn
SetCapture
SendMessageTimeoutA
CreateWindowExA
PostThreadMessageA
CreateDialogParamA
GetWindowLongA
CharNextA
SendMessageA
EqualRect
GetDesktopWindow
InvalidateRect
GetDC
MoveWindow
SetParent
GetQueueStatus
MsgWaitForMultipleObjects
LoadCursorA
DestroyAcceleratorTable
BeginPaint
EnumDisplayDevicesA
CopyRect
GetFocus
CreateAcceleratorTableA
IsChild
SetWindowTextA
SendNotifyMessageA
PostMessageA
GetDlgItem
ReleaseDC
DestroyWindow
PeekMessageA
GetWindowTextLengthA
GetClientRect
GetParent
SetWindowLongA
GetActiveWindow
GetWindowRect
ReleaseCapture
wvsprintfA
GetWindowTextA
DispatchMessageA
DrawTextA
KillTimer
EndPaint
RegisterWindowMessageA
GetWindow
SetFocus
SetWindowPos

kernel32

GetLongPathNameW
CreateFileW
DisableThreadLibraryCalls
UnmapViewOfFile
CreateFileMappingA
LocalAlloc
GetProcessHandleCount
WriteFile
GetFileSize
GlobalAlloc
CreateFileA
ReadFile
EnumResourceTypesA
WideCharToMultiByte
MapViewOfFile
GlobalSize
SetFilePointer
GetFileAttributesA
GlobalFree
GetTickCount
LocalFree
Sleep
CloseHandle

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

advapi32

CryptEncrypt
CryptReleaseContext
CryptGetHashParam
RegQueryValueExA
RegQueryInfoKeyA
CryptDestroyKey
CryptCreateHash
RegDeleteValueA
RegSetValueExA
RegCloseKey
CryptDestroyHash
RegOpenKeyExA
CryptHashData
CryptAcquireContextA
RegEnumKeyExA
CryptImportKey
RegCreateKeyExA
RegEnumValueA
RegDeleteKeyA

wininet

InternetOpenA
InternetReadFile
InternetOpenUrlA
InternetCloseHandle

ole32

StgCreateDocfile
OleInitialize
CreateBindCtx
OleUninitialize
CoTaskMemRealloc
CoGetClassObject
CLSIDFromProgID
GetRunningObjectTable
BindMoniker
CoUninitialize
CreateItemMoniker
CoTaskMemAlloc
StgOpenStorage
CoTaskMemFree
OleLockRunning
StgIsStorageFile
CreateStreamOnHGlobal
CoInitialize
CoSetProxyBlanket
CoCreateInstance
StringFromGUID2
CoInitializeSecurity
CLSIDFromString

shlwapi

PathFileExistsW
PathCombineW

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

Sections

.text
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2fcefe0cc0b9cdf1302025bcaaa5533e

Headers

File Characteristics

Imports

gdi32

user32

kernel32

shell32

advapi32

wininet

ole32

shlwapi

setupapi

Sections

.text Size: 106KB - Virtual size: 105KB

.rdata Size: 4KB - Virtual size: 4KB

.bss Size: 74KB - Virtual size: 74KB

.tls Size: 1024B - Virtual size: 236KB

.text
Size: 106KB - Virtual size: 105KB

.rdata
Size: 4KB - Virtual size: 4KB

.bss
Size: 74KB - Virtual size: 74KB

.tls
Size: 1024B - Virtual size: 236KB