e262c741d90147b98b134a8aaa7444a7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

e262c741d90147b98b134a8aaa7444a7_JaffaCakes118
Size

572KB
MD5

e262c741d90147b98b134a8aaa7444a7
SHA1

3503b970ec40fefb1e7e156b298044720c6bf0ac
SHA256

50d5a17c695d3a8257c0d9c227180ede1dd43277480a8f12e91f95eaac3a846f
SHA512

df52ccd7a1547ba909bee1782aeeab72ba309940f671a93cdeeb12b0a52b59f43f78c7bf89d63e0a83702cf9ba42ba9b9293056b6b96fbb08499704293722176
SSDEEP

12288:XNMKRsphiMG4MT4eSKIZBtMQdiSqJ5uu/2zqXP/Gs6oY7r8ikPMec5:XNrCpfG4WZIZBtXdiruPg2s6oYXD5x5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e262c741d90147b98b134a8aaa7444a7_JaffaCakes118

Files

e262c741d90147b98b134a8aaa7444a7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

13e9667d4e8941d701c3933deba40cdb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetProcessDefaultLayout
DispatchMessageA
GetDialogBaseUnits
MessageBoxIndirectW
CreateWindowExW
DrawStateA
SetWindowTextW
GetDlgItemTextA
MonitorFromPoint
ShowOwnedPopups
MessageBoxW
GetComboBoxInfo
DdeClientTransaction
ChangeDisplaySettingsA
CreateDialogIndirectParamW
SetClassLongA
GetMenuStringW
DestroyWindow
SendNotifyMessageW
RegisterClipboardFormatA
OpenWindowStationW
RegisterClassA
ShowWindow
WaitForInputIdle
SetMenu
VkKeyScanExW
EndDialog
DefDlgProcA
TileChildWindows
FreeDDElParam
SetActiveWindow
EnumDisplayDevicesW
OemToCharA
GetClipboardOwner
DefWindowProcW
RegisterClassExA
DestroyIcon
GetSystemMetrics
CallMsgFilter
PackDDElParam
LoadMenuIndirectW
IsZoomed
CallMsgFilterW
SetCursor
LoadStringW

shell32

DragQueryPoint
DoEnvironmentSubstW
ExtractAssociatedIconW
RealShellExecuteW

kernel32

GetStdHandle
GetCurrentProcessId
GetCurrentThreadId
GlobalUnlock
DeleteCriticalSection
DebugActiveProcess
GetLocalTime
HeapDestroy
InterlockedDecrement
ContinueDebugEvent
ResumeThread
GetNamedPipeHandleStateA
ReadFile
GetEnvironmentStringsW
SetEnvironmentVariableA
GetCompressedFileSizeW
IsBadWritePtr
SetThreadPriority
GetStartupInfoA
FindFirstFileW
GetProcAddress
VirtualFree
SystemTimeToTzSpecificLocalTime
WaitForSingleObject
GetModuleHandleA
OpenFileMappingA
EnumResourceNamesA
TransactNamedPipe
GetSystemDirectoryA
CreateDirectoryExA
WideCharToMultiByte
TlsGetValue
GetCurrentProcess
GetStringTypeExW
GetCurrentThread
HeapCreate
GetTimeZoneInformation
CreateMutexA
HeapFree
GetStringTypeW
CreateEventA
GetNamedPipeHandleStateW
GetVersion
OpenFileMappingW
UnhandledExceptionFilter
EnterCriticalSection
GetTickCount
CompareStringW
UnlockFile
SetLastError
SetStdHandle
GetCommandLineA
CopyFileExA
ReadConsoleOutputA
GetSystemTimeAsFileTime
VirtualQueryEx
OpenSemaphoreA
GlobalGetAtomNameW
SetHandleCount
GetLastError
MultiByteToWideChar
GetCPInfo
SetFilePointer
GetSystemTime
SetThreadLocale
GetEnvironmentStrings
OpenMutexA
GetOEMCP
CreateDirectoryW
VirtualProtect
MoveFileExA
InterlockedExchange
CreateThread
VirtualAlloc
CompareStringA
InitializeCriticalSection
HeapReAlloc
LeaveCriticalSection
ExitProcess
GetCurrentDirectoryA
TerminateProcess
CloseHandle
InterlockedCompareExchange
SetLocaleInfoW
GetFileType
WritePrivateProfileStringA
InterlockedExchangeAdd
SetEndOfFile
CreateFileW
TlsAlloc
HeapAlloc
SetThreadContext
lstrcmpi
EnumSystemLocalesA
TlsSetValue
VirtualLock
QueryPerformanceCounter
LCMapStringA
WriteFile
FreeEnvironmentStringsA
FindResourceA
TlsFree
VirtualQuery
InitializeCriticalSectionAndSpinCount
InterlockedIncrement
OpenWaitableTimerW
FlushViewOfFile
FlushFileBuffers
SetSystemTime
LoadLibraryA
lstrcpyW
WritePrivateProfileSectionA
LocalAlloc
RtlUnwind
GetStringTypeA
ReadConsoleOutputAttribute
SetUnhandledExceptionFilter
SetConsoleCP
GetPrivateProfileSectionA
VirtualAllocEx
LCMapStringW
SetLocalTime
GetACP
FreeEnvironmentStringsW
GetModuleFileNameA

comctl32

DrawStatusText
ImageList_DrawEx
ImageList_SetImageCount
ImageList_LoadImageA
InitCommonControlsEx
DestroyPropertySheetPage
ImageList_DragShowNolock
DrawInsert
InitMUILanguage
CreateUpDownControl
ImageList_SetBkColor

Sections

.text
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 120KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

13e9667d4e8941d701c3933deba40cdb

Headers

File Characteristics

Imports

user32

shell32

kernel32

comctl32

Sections

.text Size: 176KB - Virtual size: 175KB

.rdata Size: 248KB - Virtual size: 245KB

.data Size: 120KB - Virtual size: 144KB

.rsrc Size: 24KB - Virtual size: 21KB

.text
Size: 176KB - Virtual size: 175KB

.rdata
Size: 248KB - Virtual size: 245KB

.data
Size: 120KB - Virtual size: 144KB

.rsrc
Size: 24KB - Virtual size: 21KB