ea184df1e86fe6d2519a2d8421a95450_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ea184df1e86fe6d2519a2d8421a95450_JaffaCakes118
Size

207KB
MD5

ea184df1e86fe6d2519a2d8421a95450
SHA1

0307851c8e8d3a6aed691f6741faf0337e8e82d2
SHA256

47e0d38f15b105b1b49568614b8e19120551af75bcfc2164a54806a8015f034d
SHA512

b0ddfbc8c6b2e347bc954f714ea7653d9cf97a6233dfe1911d06088988615180d5a22db2a6116303787c46c0e3953a769d9ecaac493b1b5979c7a87b857234cd
SSDEEP

6144:HG9js1mcgzCEth42k9AxZZFFWO/ITZT8a+y:mtaAb3xZZFCTSa9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ea184df1e86fe6d2519a2d8421a95450_JaffaCakes118

Files

ea184df1e86fe6d2519a2d8421a95450_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3aa6da9c57231fe0010fc8db97d61606

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

CreateFontIndirectA
SetTextColor
GetBitmapBits
CreatePen
AnimatePalette
GetPath
GetBkColor
RoundRect
PlgBlt
PolyBezier
SetStretchBltMode
FlattenPath
StrokePath
ExtCreatePen
SetDIBits

shlwapi

PathCanonicalizeW
PathStripToRootW
PathIsRelativeW
PathIsURLW
PathIsRootW
PathCombineW

ole32

CoGetClassObject
GetHGlobalFromStream
StgOpenStorageOnILockBytes
CoFreeUnusedLibraries
CLSIDFromProgID
ReleaseStgMedium
StgCreateDocfileOnILockBytes
GetHGlobalFromILockBytes
CLSIDFromString
CoCreateInstance
CoCreateGuid
StringFromCLSID
CoTaskMemFree
CreateStreamOnHGlobal
CoGetMalloc
OleRun
ProgIDFromCLSID
OleRegGetUserType
CoTaskMemAlloc
OleGetAutoConvert
RevokeDragDrop
OleDuplicateData
RegisterDragDrop
CreateILockBytesOnHGlobal

comdlg32

GetFileTitleA

kernel32

FileTimeToSystemTime
CreateFiber
FindResourceExA
LocalAlloc
CompareStringW
GetProfileStringW
SetCommConfig
GetFileTime
UnlockFile
GetSystemTime
EnumResourceNamesW
VerLanguageNameW
IsDBCSLeadByte
GetFileAttributesA
LockFile
GetVersionExW
GetVolumeInformationW
FlushFileBuffers
SetEndOfFile
SearchPathW
GetUserDefaultLangID
FileTimeToLocalFileTime
FlushFileBuffers
GetFileType
GetSystemDirectoryW

comctl32

ImageList_Create
ImageList_DrawEx
ImageList_GetIconSize
ImageList_Add
ImageList_Destroy

rpcrt4

NdrClientCall
RpcBindingFromStringBindingA
RpcBindingSetAuthInfoA
RpcStringBindingComposeA
RpcStringFreeA

user32

MonitorFromWindow
SetScrollRange
CallNextHookEx
IsClipboardFormatAvailable
SetWindowPos
ClipCursor
SetWindowsHookExW
UnhookWindowsHookEx
DestroyCursor
SetClipboardData
DestroyIcon
ChildWindowFromPoint
DefWindowProcW
GetSysColorBrush
DrawEdge
ToAscii
WinHelpW
RegisterClassW
EmptyClipboard
GetSysColor

Sections

.text
Size: 183KB - Virtual size: 182KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3aa6da9c57231fe0010fc8db97d61606

Headers

File Characteristics

Imports

gdi32

shlwapi

ole32

comdlg32

kernel32

comctl32

rpcrt4

user32

Sections

.text Size: 183KB - Virtual size: 182KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 19KB - Virtual size: 19KB

.lib Size: 512B - Virtual size: 96KB

.text
Size: 183KB - Virtual size: 182KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 19KB - Virtual size: 19KB

.lib
Size: 512B - Virtual size: 96KB