d433d56b9762f50f3b27193b903757bb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d433d56b9762f50f3b27193b903757bb_JaffaCakes118
Size

149KB
MD5

d433d56b9762f50f3b27193b903757bb
SHA1

1c4074ff276bda493a2926b1dc32a66c93ff6a6a
SHA256

80d135095fa64f1389001eed2c3888d017fd9aea839c3dac081c14b3daf1fe63
SHA512

100455baa352a385235d32c7216e769bb135e4bc09d152f7cd93cebd19dd058fb3fa4462287299bf546a6e378c8d0229469ec1b2afaaa05ae82a19a242ab1368
SSDEEP

3072:BUZCZmaTUWpBnKnsm1aEvm/3FKr36TSfQHMGqyZ+jQBu0G4+:BF33qw1KzikQfLA8l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d433d56b9762f50f3b27193b903757bb_JaffaCakes118

Files

d433d56b9762f50f3b27193b903757bb_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d2c0c9f43fc34b2d1e4bf4e23635490b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetTempFileNameA
RaiseException
GlobalLock
GetModuleHandleA
GetStartupInfoA
GetStringTypeA
SetFilePointer
WaitForSingleObject
SetFileTime
DeviceIoControl
VirtualProtect

user32

CloseClipboard
CharNextA
SetWindowTextA
GetSysColor
GetWindowPlacement
FindWindowA
TrackPopupMenu
GetMenuItemCount
GetSubMenu

msvcrt

log10
strcpy
_initterm
__p___initenv
wcstoul
_CIpow
_acmdln
towlower
strchr
_wcslwr
wcsncmp
exit
__pioinfo
__setusermatherr
_adjust_fdiv
_except_handler3
__p__fmode
__p__commode
rename
__set_app_type
strncmp
__getmainargs
_XcptFilter

comctl32

ImageList_DragEnter
ImageList_DragLeave
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_BeginDrag
ImageList_Add
InitCommonControls
ImageList_Write
PropertySheetA
ImageList_SetIconSize

oleaut32

VariantInit
SysStringByteLen
SafeArrayGetElement
LoadTypeLib
SafeArrayRedim
SafeArrayUnaccessData

shell32

Shell_NotifyIconA
SHGetFolderLocation
ExtractIconW
SHCreateDirectoryExW
SHGetFileInfoA
CommandLineToArgvW

ole32

CoUninitialize
CoInitializeEx
CoTaskMemAlloc
CreateStreamOnHGlobal
CoRevokeClassObject
ProgIDFromCLSID
OleDraw
StringFromGUID2
CoGetInterfaceAndReleaseStream
OleSetMenuDescriptor
StringFromCLSID

advapi32

RegCreateKeyExA
OpenSCManagerA
RegOpenKeyA
FreeSid
SetSecurityDescriptorOwner
RegDeleteKeyA
OpenServiceA
RegSetValueExA
CheckTokenMembership

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d2c0c9f43fc34b2d1e4bf4e23635490b

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

comctl32

oleaut32

shell32

ole32

advapi32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 137KB - Virtual size: 136KB

.data Size: 6KB - Virtual size: 5KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 137KB - Virtual size: 136KB

.data
Size: 6KB - Virtual size: 5KB