dc7cc11acd3daf1abf965f759e923dd8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dc7cc11acd3daf1abf965f759e923dd8_JaffaCakes118
Size

190KB
MD5

dc7cc11acd3daf1abf965f759e923dd8
SHA1

c7aca5b6c7f2da0f7f31b62c9fe20f239d146723
SHA256

7e7cb80c1baaa63ee0e38587041ced95e37479d55f526f6026f3220561b09d3b
SHA512

a52dc077b961494652acce681a9153eb1f06b17677f9d8865909c7bcc64cb9f77b9369f4488398fc1b5e66601beba0bb48346a0b6ccc69c3a65f09c594a20e4b
SSDEEP

3072:JWUMQWifgDV7LK4UwbvhVsMwlW5iq84Dr5PUWwU5wKfZiQgJmvPtrLSkUtjpssH1:JWv6+kwbvheFdirio5wYvPtrLS/rs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc7cc11acd3daf1abf965f759e923dd8_JaffaCakes118

Files

dc7cc11acd3daf1abf965f759e923dd8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f4183d7248985bfec4b0464fcb5fb3e1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFileExistsW
PathStripToRootW
PathRemoveFileSpecW
PathFindExtensionW
PathIsUNCW
PathFindFileNameW
PathAppendW

ole32

StgOpenStorageOnILockBytes
CoTaskMemFree
StgCreateDocfileOnILockBytes
CoFreeUnusedLibraries
CoCreateInstance
CoRevokeClassObject
OleFlushClipboard
CoInitialize
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
CoTaskMemAlloc
OleInitialize
CoUninitialize
OleUninitialize
CoGetClassObject
CoRegisterMessageFilter
CLSIDFromProgID
CLSIDFromString

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

kernel32

LocalFileTimeToFileTime
GetModuleHandleW
ReadFile
GetLocaleInfoA
VirtualFree
GetLocaleInfoW
LoadLibraryW
GetFileAttributesW
GetSystemDefaultLangID
GetCalendarInfoA
ConvertDefaultLocale
InterlockedDecrement
GetVersionExW
lstrcmpiA
GetThreadLocale
MoveFileW
RaiseException
CloseHandle
SetFileTime
SystemTimeToFileTime
SetThreadContext
InterlockedExchange
lstrcpyW
WideCharToMultiByte
FindClose
LoadResource
EnumResourceNamesA
CreateFileW
MultiByteToWideChar
WriteFile
GetCurrentProcessId
EnumResourceLanguagesW
FindNextFileW
GetVersion
ReleaseMutex
FreeLibrary
GetModuleFileNameW
GetProcAddress
SizeofResource
LockResource
ExitProcess
DeleteCriticalSection
RemoveDirectoryW
CreateMutexW
GetCurrentDirectoryW
CreateDirectoryW
WaitForSingleObject
DeleteFileW
FindResourceW
GetACP
SetFilePointer
InitializeCriticalSection
FindFirstFileW
lstrcmpA

gdi32

SetBkColor
ExtTextOutW
GetObjectW
RectVisible
SetWindowExtEx
GetStockObject
DeleteDC
DeleteObject
RestoreDC
SetMapMode
GetMapMode
GetBkColor
SaveDC
ScaleViewportExtEx
TextOutW
CreateBitmap
SetViewportExtEx
GetRgnBox
ScaleWindowExtEx
SelectObject
GetTextColor
SetTextColor
SetViewportOrgEx
OffsetViewportOrgEx
GetDeviceCaps
GetWindowExtEx
PtVisible
GetClipBox
GetViewportExtEx
Escape
ExtSelectClipRgn
CreateRectRgnIndirect

comdlg32

GetFileTitleW

advapi32

RegOpenKeyW
RegCreateKeyExW
RegOpenKeyExW
RegDeleteKeyW
RegEnumKeyExW
RegEnumKeyW
RegQueryValueW
RegCloseKey
RegQueryInfoKeyW
RegSetValueExW
RegQueryValueExW

user32

CreateWindowExW
DefWindowProcW
CharNextW
EqualRect
LoadIconW
IsChild
CharUpperW
MessageBeep
GetNextDlgGroupItem
CallWindowProcW
GetClassLongW
GetMessageTime
GetPropW
GetWindowPlacement
GetClientRect
GetMessagePos
InvalidateRgn
GetMenu
CopyAcceleratorTableW
GetTopWindow
GetForegroundWindow
SendDlgItemMessageA
SetRect
GetClassInfoExW
AdjustWindowRectEx
IsIconic
IsWindow
SetActiveWindow
RegisterWindowMessageW
IntersectRect
GetClassInfoW
SetForegroundWindow
OffsetRect
MapWindowPoints
IsRectEmpty
GetNextDlgTabItem
RemovePropW
WinHelpW
RegisterClassW
UpdateWindow
InvalidateRect
SetPropW
DestroyMenu

oledlg

OleUIBusyW

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f4183d7248985bfec4b0464fcb5fb3e1

Headers

File Characteristics

Imports

shlwapi

ole32

shell32

winspool.drv

kernel32

gdi32

comdlg32

advapi32

user32

oledlg

Sections

.text Size: 102KB - Virtual size: 101KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 81KB - Virtual size: 80KB

.edata Size: 1024B - Virtual size: 112KB

.text
Size: 102KB - Virtual size: 101KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 81KB - Virtual size: 80KB

.edata
Size: 1024B - Virtual size: 112KB