e105fdc11de9382699892ea9eb678f84_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e105fdc11de9382699892ea9eb678f84_JaffaCakes118
Size

176KB
MD5

e105fdc11de9382699892ea9eb678f84
SHA1

50be4e7e48a5693c5f06f9398f2696e5d300198c
SHA256

3d4d1b817408054770135d52aa45b5b18d82d978122f4fec7870fadf6e302a10
SHA512

e3942dd5571de6b35e688fb3c84a27e15e662ffec01fd897be40b405fcdcb836fb44206e6771b301e08f31e8e8d7389eb4d9c9b1a2966b0875f675eab332fe17
SSDEEP

3072:YfikO0zn8vMIKF4uXUJOxUgDJO8uo2fHn4nlzm9sZ2zpzUpPdn5qxyBS4:YqSDIK4uXwngttuRP9supzAPd5B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e105fdc11de9382699892ea9eb678f84_JaffaCakes118

Files

e105fdc11de9382699892ea9eb678f84_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1648bbe0d3223d6e364498109d6fc349

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteW
SHBrowseForFolderW
SHGetSpecialFolderPathW
SHGetPathFromIDListW

user32

LoadStringW
GetWindowLongW
SetDlgItemTextW
SetWindowPos
GetWindowDC
MessageBoxW
AdjustWindowRect
ScreenToClient
LoadIconW
EndPaint
CallWindowProcW
DestroyWindow
ReleaseDC
SendMessageW
GetDlgItem
PostMessageW
LoadBitmapW
GetClientRect
DefWindowProcW
SetWindowLongW
GetParent
GetSystemMetrics
GetWindowRect
BeginPaint
MoveWindow
GetDlgItemTextW
CreateWindowExW

ole32

CoCreateInstance
CoUninitialize
CoInitialize

gdi32

GetDeviceCaps
CreateSolidBrush
GetObjectW
DeleteObject
SetBkColor
CreateFontIndirectW
SetBkMode

avifil32

AVISaveOptions
AVIMakeCompressedStream

comctl32

PropertySheetW
DestroyPropertySheetPage
CreatePropertySheetPageW

kernel32

WaitForMultipleObjects
InterlockedDecrement
LoadLibraryExW
HeapCreate
CreateDirectoryW
Sleep
MultiByteToWideChar
VirtualFree
GetCurrentProcess
GetSystemTimeAsFileTime
TlsAlloc
DeleteCriticalSection
QueryPerformanceCounter
TlsGetValue
GetEnvironmentStringsW
HeapFree
InitializeCriticalSection
GetModuleFileNameW
GetFileAttributesW
BeginUpdateResourceW
VirtualAlloc
RaiseException
WriteConsoleA
HeapSize
GetVersionExA
LCMapStringW
TerminateProcess
LeaveCriticalSection
TlsSetValue
FreeEnvironmentStringsA
GetPriorityClass
LoadLibraryW
GetOEMCP
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
GetACP
ReadFile
FreeEnvironmentStringsW
IsDebuggerPresent
LCMapStringA
GetFileType
RtlUnwind
LoadLibraryA
TlsFree
WriteConsoleW
GetStringTypeA
SetFilePointer
EnumResourceTypesW
GetConsoleOutputCP
UnhandledExceptionFilter
CloseHandle
HeapReAlloc
FlushFileBuffers
GetCommandLineA
ExitProcess
EndUpdateResourceW
GetSystemDirectoryW
GetFileSize
CreateFileW
GetUserDefaultUILanguage
SetUnhandledExceptionFilter
GetProcessHeap
WideCharToMultiByte
GetConsoleMode
GetCPInfo
FreeLibrary
EnterCriticalSection
UpdateResourceW
GetConsoleCP
HeapAlloc
GetEnvironmentStrings
SetLastError
GetStdHandle
GetStartupInfoA
IsValidCodePage
SetStdHandle
GetTickCount
GetLocaleInfoA
GetCurrentThreadId
InterlockedIncrement
CreateFileA
GetCurrentProcessId
WriteFile
GetStringTypeW
SetHandleCount
HeapDestroy
GetLastError

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1648bbe0d3223d6e364498109d6fc349

Headers

File Characteristics

Imports

shell32

user32

ole32

gdi32

avifil32

comctl32

kernel32

Sections

.text Size: 103KB - Virtual size: 102KB

.rdata Size: 4KB - Virtual size: 3KB

.bss Size: 67KB - Virtual size: 66KB

.tls Size: 1024B - Virtual size: 380KB

.text
Size: 103KB - Virtual size: 102KB

.rdata
Size: 4KB - Virtual size: 3KB

.bss
Size: 67KB - Virtual size: 66KB

.tls
Size: 1024B - Virtual size: 380KB