dde28c9f77448dd115332cc78f8553e2_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

dde28c9f77448dd115332cc78f8553e2_JaffaCakes118
Size

528KB
MD5

dde28c9f77448dd115332cc78f8553e2
SHA1

94402b6f642b274eee885f26e215596ba56402b8
SHA256

2408370400c67e60f127265973953e214751edb5ca04b1a4a3ae4fe571d54893
SHA512

ab40de2a0079ee8abf6d2a9baaa94752fb3def4c9d15affceeaa903b50e072a8b71c4e2732383a7966637ce3f697681f1f9f5291085166179c4c539a840ba2e5
SSDEEP

12288:kVADDkikXFBI9TougLZn25re8YBRplrnk+zyeH/c:kVADDzwBI9UuraDnRb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dde28c9f77448dd115332cc78f8553e2_JaffaCakes118

Files

dde28c9f77448dd115332cc78f8553e2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9829908769593095dce29b040d4efd14

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndDialog
MessageBoxW
DestroyWindow
SetCursorPos
CallWindowProcW
MonitorFromRect
EndDeferWindowPos
UnpackDDElParam
GetNextDlgTabItem
DrawAnimatedRects
UnregisterClassW
FrameRect
GetComboBoxInfo
BroadcastSystemMessage
DrawMenuBar
CreateWindowExA
GetScrollInfo
DeleteMenu
GetCaretPos
DdeQueryConvInfo
SetDoubleClickTime
EnumPropsW
BeginDeferWindowPos
EditWndProc
GetMenuItemID
DefWindowProcW
TranslateMessage
GetWindow
MonitorFromWindow
PostMessageW
ShowWindow
wsprintfW
MapVirtualKeyExA
InvalidateRgn
GetWindowModuleFileNameA
KillTimer
DdeGetLastError
DdeReconnect
SetCaretPos
RegisterClassExA
RegisterClassA
BroadcastSystemMessageW
DefFrameProcA
GetProcessWindowStation
DrawIconEx
SetForegroundWindow
GetClipboardData
DdeQueryStringW
FlashWindow
SetWindowTextA
GetUserObjectSecurity

shell32

SHFormatDrive
ShellHookProc
ExtractAssociatedIconExW

kernel32

QueryPerformanceCounter
GetFileAttributesA
HeapReAlloc
GetEnvironmentVariableW
IsDebuggerPresent
WideCharToMultiByte
InterlockedExchange
GetCurrentProcessId
SetHandleCount
CompareStringA
GetTempPathA
GetACP
VirtualAlloc
GetSystemTime
FreeEnvironmentStringsW
CreateMutexA
GetEnvironmentStringsW
VirtualQuery
InterlockedDecrement
MultiByteToWideChar
GetCurrentThreadId
HeapCreate
SetStdHandle
GetStringTypeA
ReadFile
DeleteFiber
LoadLibraryExW
WritePrivateProfileSectionW
GetCPInfo
GetVersion
GetCommandLineA
GetNumberFormatW
FreeEnvironmentStringsA
GetSystemInfo
IsBadWritePtr
TlsGetValue
GetModuleHandleA
TlsAlloc
GetProcAddress
TlsFree
GetLastError
WriteFile
lstrcmpiA
LeaveCriticalSection
SetFilePointer
RtlZeroMemory
GetThreadPriority
GetStartupInfoA
HeapAlloc
GetCurrentThread
LoadLibraryA
CloseHandle
FlushFileBuffers
GetComputerNameW
LCMapStringW
GetTickCount
VirtualFree
SetLastError
GetFileType
EnterCriticalSection
lstrcmpiW
TlsSetValue
GetOEMCP
GetStdHandle
GetLocalTime
GlobalCompact
WritePrivateProfileStringA
HeapDestroy
GetEnvironmentStrings
InitializeCriticalSection
CompareStringW
RtlUnwind
HeapFree
GetStringTypeW
GetSystemTimeAsFileTime
GetModuleFileNameA
CreateProcessA
LCMapStringA
SetEnvironmentVariableA
SetEndOfFile
lstrcpyW
GetTimeZoneInformation
OpenMutexA
TerminateProcess
UnhandledExceptionFilter
GetCurrentProcess
InterlockedIncrement
SetConsoleTextAttribute
ExitProcess
DeleteCriticalSection
GetFileSize

comctl32

ImageList_Write
ImageList_GetImageInfo
DestroyPropertySheetPage
ImageList_Merge
ImageList_SetBkColor
ImageList_BeginDrag
ImageList_GetIcon
ImageList_DragShowNolock
ImageList_GetImageRect
DrawStatusTextA
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_Read
ImageList_AddIcon
ImageList_AddMasked
ImageList_GetImageCount
ImageList_SetOverlayImage
DrawInsert
InitMUILanguage

Sections

.text
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 253KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9829908769593095dce29b040d4efd14

Headers

File Characteristics

Imports

user32

shell32

kernel32

comctl32

Sections

.text Size: 140KB - Virtual size: 139KB

.rdata Size: 256KB - Virtual size: 253KB

.data Size: 108KB - Virtual size: 134KB

.rsrc Size: 20KB - Virtual size: 18KB

.text
Size: 140KB - Virtual size: 139KB

.rdata
Size: 256KB - Virtual size: 253KB

.data
Size: 108KB - Virtual size: 134KB

.rsrc
Size: 20KB - Virtual size: 18KB