d6b1bde5dad7a3ca0d1fd362d92b8703_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d6b1bde5dad7a3ca0d1fd362d92b8703_JaffaCakes118
Size

181KB
MD5

d6b1bde5dad7a3ca0d1fd362d92b8703
SHA1

70154c3a47a37ed229a1f76d852c352ed7cd9687
SHA256

b271eba08cf17f2fa712d377884fe2b38743e253867900b1a0440a739e401c59
SHA512

c05f8bb09349db9accabcb35a13ed2cf6aebe654aac175134f3b75d8ca27d0bdcf8148e3034b6e629d45478732489048fd52575fdbaa890220bc0927e86d76b9
SSDEEP

3072:sedPNAfdSrs1Ew9hAZNLhKG1dowxc24DvJQ5FU5m4Nph0jpLvF:BefdDoDLhnowxc24DvJQTGP0jpZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d6b1bde5dad7a3ca0d1fd362d92b8703_JaffaCakes118

Files

d6b1bde5dad7a3ca0d1fd362d92b8703_JaffaCakes118
.exe windows:4 windows x86 arch:x86

56ed6084c5ecd8784553be57502cda76

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetMalloc
SHBrowseForFolderA
ShellExecuteExA
SHGetDesktopFolder

kernel32

FindClose
GetSystemDirectoryA
GetWindowsDirectoryA
GetTempPathA
GetCurrentDirectoryA
MultiByteToWideChar
GetVersionExA
LoadLibraryExA
GetDiskFreeSpaceA
GetExitCodeProcess
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
SetEndOfFile
DeleteFileA
CreateDirectoryA
GetCommandLineA
QueryPerformanceFrequency
LCMapStringA
GetLocaleInfoA
HeapSize
GetCurrentProcessId
GetTickCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
FreeEnvironmentStringsA
GetFullPathNameA
RaiseException
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
RtlUnwind
HeapCreate
HeapDestroy
HeapReAlloc
VirtualAlloc
VirtualFree
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetHandleCount
InitializeCriticalSection
DeleteCriticalSection
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetTimeZoneInformation
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoA
GetProcessHeap
ReadFile
LeaveCriticalSection
EnterCriticalSection
SetStdHandle
GetDriveTypeA
SetEnvironmentVariableA
HeapFree
HeapAlloc
CreateFileA
GetFileType
SetFilePointer
GetConsoleMode
GetConsoleCP
WideCharToMultiByte
FlushFileBuffers
ExitProcess
GetModuleHandleA
GetSystemTimeAsFileTime
AllocConsole
GetStdHandle
SetConsoleTitleA
LocalFree
LocalAlloc
CreateEventA
GetLastError
SetEvent
InterlockedExchange
QueryPerformanceCounter
GetCurrentThreadId
WriteFile
Sleep
LoadLibraryA
GetProcAddress
GetCurrentProcess
FreeLibrary
CloseHandle
CreateMutexA
WaitForSingleObject
ReleaseMutex
LCMapStringW
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
GetEnvironmentStrings

advapi32

RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

user32

PostQuitMessage
LoadIconA
GetSysColorBrush
DestroyIcon
CreateDialogParamA
ShowWindowAsync
DestroyWindow
DialogBoxParamA
SetWindowTextA
EndDialog
GetParent
GetSystemMetrics
GetDesktopWindow
SetWindowPos
GetWindowRect
PeekMessageA
GetMessageA
DispatchMessageA
SetForegroundWindow
EnumWindows
IsWindow
GetClassNameA
GetWindowTextA
ShowWindow
CreateWindowExA
TranslateMessage
GetDlgItemTextA
SetDlgItemTextA
SendDlgItemMessageA
GetDlgItem
UnregisterClassA
LoadCursorA
RegisterClassExA
GetUpdateRect
BeginPaint
EndPaint
GetClientRect
SendMessageA
DefWindowProcA
InvalidateRect
UpdateWindow
GetWindowLongA
SetWindowLongA
MessageBoxA

ole32

CoInitialize
CoUninitialize
OleUninitialize
CoCreateInstance
OleInitialize

gdi32

GdiFlush
SelectObject
DeleteObject
DeleteDC
CreateCompatibleDC
BitBlt
AddFontResourceA
RemoveFontResourceA
CreateDIBSection

Sections

.text
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

56ed6084c5ecd8784553be57502cda76

Headers

File Characteristics

Imports

comctl32

shell32

kernel32

advapi32

user32

ole32

gdi32

Sections

.text Size: 119KB - Virtual size: 119KB

.rdata Size: 22KB - Virtual size: 21KB

.data Size: 7KB - Virtual size: 20KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 119KB - Virtual size: 119KB

.rdata
Size: 22KB - Virtual size: 21KB

.data
Size: 7KB - Virtual size: 20KB

.rsrc
Size: 5KB - Virtual size: 4KB