d60b5df722dd7a4bb17a037b7a6bab1c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d60b5df722dd7a4bb17a037b7a6bab1c_JaffaCakes118
Size

909KB
MD5

d60b5df722dd7a4bb17a037b7a6bab1c
SHA1

5c51949271ac1bcf378f1eed81f948dd1171661d
SHA256

f7a1a64efc0534d5808306b569d3157295b1c41124da8304676c74e8d8d975f1
SHA512

137c79f6beb9645dd4d4f3f164a21631a20605594587b9a8b4b9af9a3715eeb3d7bd0bb03c6d32c409d5e071d3b28b5bd8ed69007c522db02f97b603614312b5
SSDEEP

24576:Q0Qi1ZDezSQzIGCOKb3Aih50eaQU5mHIRsUTSejHzPoeeMc34p8345jNpZvon22s:Pn1IOQzIGCOKb3Aih50eaQU5mHIRsUTD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d60b5df722dd7a4bb17a037b7a6bab1c_JaffaCakes118

Files

d60b5df722dd7a4bb17a037b7a6bab1c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3761264be1c53c591ab8b2afd8b13867

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

gdi32

CreateBitmap
AbortPath
PolyPolygon
FlattenPath
DeleteObject
EnumObjects
SelectObject
CreateFontIndirectA
CreateFontA
SelectClipPath

user32

DispatchMessageA
TranslateMessage
PostMessageA
RegisterClassA
GetWindowLongA
DrawTextW
EndPaint
ShowWindow
DrawTextA
GetDC
SendMessageA
SendMessageW
GetMessageA
CreateWindowExA
GetGuiResources
InvertRect
BeginPaint

kernel32

RtlUnwind
GetSystemTimeAsFileTime
InterlockedExchange
Sleep
InterlockedCompareExchange
GetStartupInfoA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
FormatMessageA
LocalFree
TerminateThread
GetLogicalProcessorInformation
RegisterWaitForSingleObject
CreateTimerQueue
GetMailslotInfo
SuspendThread
DeleteTimerQueue
GetLastError
MultiByteToWideChar
lstrcmpiA
GetFileAttributesA
GetProcAddress
WaitForSingleObject
ReleaseMutex
CloseHandle
GetFileSize
MapViewOfFile
CreateFileMappingA
CreateFileA
CreateMutexA
GetVersionExA
GetCurrentProcess
GetVersion
lstrcpynA
ExitProcess
GetModuleFileNameA
FreeLibrary
DeleteFileA
SetEnvironmentVariableA
DuplicateHandle
GetCurrentProcessId
GetEnvironmentVariableA
GetExitCodeProcess
TerminateProcess
ResumeThread
CreateProcessA
GetCommandLineA
LoadLibraryA
FlushFileBuffers
WriteFile
SetCurrentDirectoryA
CreateDirectoryA
GetTempPathA
GetModuleHandleA
ReadConsoleA
WriteConsoleA
GetStdHandle
GetCurrentDirectoryA
GetFullPathNameA
SetErrorMode
QueueUserWorkItem
HeapSize

msvcrt

realloc
rand
_pgmptr
srand
__argc
__argv
memmove
??0exception@@QAE@XZ
?what@exception@@UBEPBDXZ
??1exception@@UAE@XZ
??0exception@@QAE@ABV0@@Z
_CxxThrowException
_callnewh
_ismbblead
__getmainargs
_cexit
_exit
_XcptFilter
exit
_acmdln
_initterm
_amsg_exit
__setusermatherr
__p__commode
__p__fmode
__set_app_type
??1type_info@@UAE@XZ
_unlock
__dllonexit
_lock
_onexit
?terminate@@YAXXZ
_controlfp
memset
__CxxFrameHandler
atoi
_snprintf
_time64
memcpy
free
malloc

ole32

CoInitializeEx
OleInitialize
CoCreateInstance
CoTaskMemFree
CLSIDFromProgID

shell32

SHGetPathFromIDListA
SHGetDiskFreeSpaceExA
ShellExecuteExA
SHFileOperationA
SHBrowseForFolderA
SHGetInstanceExplorer

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 145KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 178KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3761264be1c53c591ab8b2afd8b13867

Headers

DLL Characteristics

File Characteristics

Imports

comdlg32

gdi32

user32

kernel32

msvcrt

ole32

shell32

Sections

.text Size: 57KB - Virtual size: 56KB

.rdata Size: 145KB - Virtual size: 145KB

.data Size: 178KB - Virtual size: 181KB

.rsrc Size: 7KB - Virtual size: 6KB

.reloc Size: 7KB - Virtual size: 7KB

.text
Size: 57KB - Virtual size: 56KB

.rdata
Size: 145KB - Virtual size: 145KB

.data
Size: 178KB - Virtual size: 181KB

.rsrc
Size: 7KB - Virtual size: 6KB

.reloc
Size: 7KB - Virtual size: 7KB