d67b69e3cd50c993b792b599c527a710_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d67b69e3cd50c993b792b599c527a710_JaffaCakes118
Size

88KB
MD5

d67b69e3cd50c993b792b599c527a710
SHA1

f12c6a6516443a620c8420e2458dcdd23db264b9
SHA256

189418e8709da2c8c8e37e102f09d2a6948bc380ddfcbd33cb31586f4e613440
SHA512

128fd12f028fa96a480056bd27fcc3f2042a6f96aacb514ba35d7bbd6c7ae5fe9273d2deee1c65bdd1041bde7925cf18c701f4d4d76fb7574ab41e0a12013c3f
SSDEEP

1536:T0VtHPZf9as2f70a1tlAZMTVPMuUZiYCrVqJikrGyVnb/C6LYqINdsdcd:TCPQ1tliAPOZiYCrVEGWC60Teu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d67b69e3cd50c993b792b599c527a710_JaffaCakes118

Files

d67b69e3cd50c993b792b599c527a710_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e0b2315db0a39e75975b38aff5f047f4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
GetDateFormatW
GetCommandLineW
WideCharToMultiByte
CreateFileA
GetLocaleInfoA
CreatePipe
SetStdHandle
GetModuleHandleA
GetDriveTypeA
GlobalAlloc
GetTempPathW
SetEndOfFile
WriteConsoleW
LocalFree
LCMapStringW
lstrcmpW
SetLastError
SetFilePointer
GetCurrentProcessId
SetFileAttributesW
RaiseException
GetSystemInfo
lstrcpynW
GlobalSize
VirtualAllocEx
GetProcAddress
LoadLibraryA
GetStringTypeW
GetStringTypeA
LCMapStringA
SetUnhandledExceptionFilter
HeapSize
VirtualQuery
InterlockedExchange
RtlUnwind
GetCPInfo
GetOEMCP
IsBadWritePtr
HeapReAlloc
VirtualAlloc
HeapAlloc
FlushFileBuffers
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
WriteFile
CloseHandle
HeapFree
GetCurrentProcess
TerminateProcess
ExitProcess
ReadFile
GetLastError
GetCommandLineA
GetStartupInfoA
FreeLibrary
CreateMutexW
GetTimeFormatW
FindResourceW
SetEvent
VirtualProtect
GetConsoleOutputCP
GlobalFree
GetDriveTypeW
TlsSetValue
EnterCriticalSection
LocalLock
GetSystemTimeAsFileTime
GetStdHandle
SizeofResource
TerminateThread
FindClose
WaitForMultipleObjects
GetLongPathNameW
LocalAlloc
GetVersionExA
MultiByteToWideChar
FindNextFileW
GetProcessHeap
lstrcatW
IsValidLocale
CompareStringA
WriteConsoleA
GetUserDefaultLCID
GetCurrentThreadId
PeekNamedPipe
QueryPerformanceCounter
lstrcmpiW
GetACP
TlsGetValue
GetModuleHandleW
GetTimeFormatA
GetTickCount
InterlockedDecrement

user32

MoveWindow
SetWindowPlacement
InsertMenuItemW
SetForegroundWindow
RedrawWindow
GetDlgCtrlID
EnableMenuItem
GetMessageA
PostQuitMessage
DefWindowProcW
IsChild
EndDialog
MonitorFromWindow
DestroyIcon
PeekMessageW
GetCursorPos
TranslateAcceleratorW
GetScrollRange
MapWindowPoints
GetKeyState
IsWindowVisible
SetMenu
DrawFrameControl
SetMenuItemInfoW
SetDlgItemTextW
ReleaseCapture
DialogBoxIndirectParamW
IsClipboardFormatAvailable
GetActiveWindow
SetCapture
GetWindowLongW
FrameRect
SendMessageW
GetParent
SetDlgItemInt
MessageBoxW
CreateCaret
DragDetect
SetScrollRange
GetClientRect
ShowScrollBar
UpdateWindow
DrawIcon
TrackPopupMenu
GetMenuItemID
GetCapture
CreateDialogParamW
ClientToScreen
GetClipboardData
BeginPaint
OpenClipboard
DeferWindowPos

gdi32

SaveDC
CreatePatternBrush
DeleteDC
GetTextExtentPointW
SelectObject
GetPixel
StartPage
CreateCompatibleDC
GetTextMetricsW
RestoreDC
BitBlt
SetTextColor
StartDocW
GetTextExtentPoint32W
CreateCompatibleBitmap
EndPage
DeleteObject
CreateSolidBrush
CreateFontW
CreateHatchBrush
SetWindowOrgEx
GetDeviceCaps
CreateFontIndirectW
GetObjectW
RemoveFontResourceW
SetROP2
OffsetWindowOrgEx
GetStockObject
SetBkMode
SetTextAlign
ExtTextOutW
EnumFontFamiliesExW
CreatePen
MoveToEx
LineTo
AddFontResourceW
SetBkColor

comdlg32

GetOpenFileNameA
GetFileTitleW
ChooseColorA
PrintDlgW
ReplaceTextW
PageSetupDlgW
PrintDlgA
FindTextW
ChooseFontA
GetSaveFileNameA
GetFileTitleA
ReplaceTextA
ChooseFontW
ChooseColorW
GetSaveFileNameW
FindTextA
GetOpenFileNameW
PageSetupDlgA

ole32

StgOpenAsyncDocfileOnIFillLockBytes

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e0b2315db0a39e75975b38aff5f047f4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ole32

Sections

.text Size: 28KB - Virtual size: 28KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 46KB - Virtual size: 91KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 28KB - Virtual size: 28KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 46KB - Virtual size: 91KB

.rsrc
Size: 4KB - Virtual size: 4KB