dfc8093b268d177db1e201463692dc4a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dfc8093b268d177db1e201463692dc4a_JaffaCakes118
Size

2.8MB
MD5

dfc8093b268d177db1e201463692dc4a
SHA1

74df4bff9bb96116d3b3b65b2ac28ec204b4bead
SHA256

ab10d56322cf6f3d0ccc69f2f3e806717c717e82b9343bddffaa574371c6bcfa
SHA512

ee56a20fb2df76d64f06277b30a188c20a60c6b0a5738ad442295720c4e8895b7779e575fa9c54ccbfa543d81d1c69e367537b79963d35da581d84e5d8dccf6c
SSDEEP

24576:E60SaPyC8lN6TJpU1OPEfrAvO9fY/7ytqBA8vyk:E6UPyzSJiE28Kk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfc8093b268d177db1e201463692dc4a_JaffaCakes118

Files

dfc8093b268d177db1e201463692dc4a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

79973e7c986a4b88d5bbaa06e8d65f69

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetGetLastErrorW
WNetGetResourceInformationW

comctl32

CreateStatusWindowW
FlatSB_SetScrollPos
FlatSB_GetScrollPos
CreatePropertySheetPageW
ord17
ImageList_Create
ImageList_Destroy
ImageList_GetImageCount
ImageList_SetImageCount
ImageList_Add
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_GetBkColor
ImageList_SetOverlayImage
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_Remove
ImageList_DragLeave
ImageList_DragMove
ImageList_GetDragImage
ImageList_Read
ImageList_Write
ImageList_GetIconSize
ImageList_SetIconSize
ImageList_GetImageInfo
CreateToolbarEx
FlatSB_GetScrollInfo

user32

DestroyCursor
FindWindowExW
RemovePropW
GetSubMenu
CheckRadioButton
GetDlgItemTextW
SetDlgItemTextW
CreateDialogParamW
BringWindowToTop
CreateWindowExW
CallWindowProcW
WindowFromPoint

shlwapi

PathGetDriveNumberW
PathIsDirectoryW
PathIsURLW
PathStripPathW
UrlUnescapeW
AssocCreate
PathFindFileNameW
PathBuildRootW
StrRetToStrW
StrCmpIW
StrStrIW
StrStrW
StrRChrW
StrFormatByteSizeW

kernel32

VirtualAlloc
HeapFree
GetStringTypeW
WideCharToMultiByte
MultiByteToWideChar
GetVersionExW
CreateFileW
LoadLibraryW
CreateFileMappingW
CreateMutexW
FormatMessageW
GetLastError
FileTimeToLocalFileTime
SystemTimeToFileTime
CloseHandle
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
RtlUnwind

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eucc5r
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

79973e7c986a4b88d5bbaa06e8d65f69

Headers

File Characteristics

Imports

mpr

comctl32

user32

shlwapi

kernel32

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.data Size: 512B - Virtual size: 64.2MB

.idata Size: 2KB - Virtual size: 2KB

.eucc5r Size: 1.6MB - Virtual size: 1.6MB

.rsrc Size: 29KB - Virtual size: 28KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.data
Size: 512B - Virtual size: 64.2MB

.idata
Size: 2KB - Virtual size: 2KB

.eucc5r
Size: 1.6MB - Virtual size: 1.6MB

.rsrc
Size: 29KB - Virtual size: 28KB