ea2307dd5715a1c5491d528696d2033c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ea2307dd5715a1c5491d528696d2033c_JaffaCakes118
Size

559KB
MD5

ea2307dd5715a1c5491d528696d2033c
SHA1

b4ceafa78d58948845200c29b2460b15f7444cc8
SHA256

e4f681c9ef36e76a7ebeed83dfc9269dd23457328f843c038bab6c92d9d7e44c
SHA512

211c22c90538de2e0ceb3f89881280bbd71075067241a24c63ee6fed5ef3e6e0c6dee9884ce1baed974a6be259fed3445fda5d016a9aa45c5f1882ce63354125
SSDEEP

12288:WBhLzc5gX4BXcpzSEba+nOWhNZbzDOoLaQTdD1B8T:YPXoBXsldhnbzD/vTNoT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ea2307dd5715a1c5491d528696d2033c_JaffaCakes118

Files

ea2307dd5715a1c5491d528696d2033c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a23741ecb86a6caeaf1babb3b7cd3f08

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextExtentPoint32W
SetBkMode
RemoveFontResourceA
IntersectClipRect
CreateRectRgn
GetCharacterPlacementW
EnumEnhMetaFile
CreateEllipticRgn
GetMiterLimit
GetEnhMetaFileDescriptionA
PolyTextOutW
SetEnhMetaFileBits
StretchDIBits
PatBlt
GetObjectW
CreateICW
SetStretchBltMode
ModifyWorldTransform

user32

SetClassWord
WindowFromDC
MapVirtualKeyW
GetAncestor
InsertMenuItemA
GrayStringW
SetWindowPlacement
OpenIcon
IsCharAlphaNumericA
RegisterClassA
GetWindowTextA
DdeUnaccessData
UnpackDDElParam
RegisterClassExA
DdeReconnect
FillRect
SetCaretPos
SetRectEmpty
GetInputDesktop
CallMsgFilterW
DestroyCursor
GetDlgCtrlID
MonitorFromRect
WinHelpW

kernel32

InitializeCriticalSection
UnhandledExceptionFilter
InterlockedDecrement
GetCurrentProcess
FreeEnvironmentStringsA
WriteConsoleA
GetTimeFormatA
GetCurrentThreadId
QueryPerformanceCounter
EnterCriticalSection
GetLongPathNameW
LoadResource
IsValidCodePage
EnumSystemLocalesA
InterlockedExchange
VirtualAlloc
GetCurrentProcessId
GetEnvironmentStrings
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
SetConsoleTitleW
HeapAlloc
GetStringTypeA
TlsAlloc
GetEnvironmentStringsW
HeapSize
GetTimeZoneInformation
GetStringTypeW
GetPrivateProfileStringW
EnumCalendarInfoExW
GetFileType
SetStdHandle
HeapCreate
GetModuleFileNameW
WriteFile
ReadConsoleA
HeapDestroy
HeapFree
IsValidLocale
GetDateFormatA
GetModuleHandleA
CloseHandle
SetEnvironmentVariableA
CreateMutexA
SetConsoleCtrlHandler
TlsGetValue
SetLastError
RtlUnwind
TlsFree
GetCPInfo
LoadLibraryA
GetConsoleMode
FlushFileBuffers
InterlockedIncrement
SetHandleCount
GetStartupInfoA
EnumResourceTypesA
WriteConsoleW
GetModuleFileNameA
GetVersionExA
WideCharToMultiByte
GetCurrentThread
ResetEvent
GetStdHandle
Sleep
ReadFile
GetLocaleInfoA
ContinueDebugEvent
RemoveDirectoryW
GetPrivateProfileStructA
CompareStringW
GetThreadPriorityBoost
LeaveCriticalSection
IsDebuggerPresent
VirtualFree
GlobalReAlloc
HeapReAlloc
GetACP
ExitProcess
GetTickCount
GlobalAlloc
GetUserDefaultLCID
LCMapStringW
CreateFileA
GetProcessHeap
DeleteCriticalSection
GetCommandLineW
GetCommandLineA
CompareFileTime
MultiByteToWideChar
GetProcAddress
TerminateProcess
SetUnhandledExceptionFilter
OpenMutexA
GetOEMCP
GlobalFindAtomW
FreeLibrary
GetModuleHandleW
GetLastError
CompareStringA
GetConsoleOutputCP
GetLocalTime
GetLocaleInfoW
SetFilePointer
GetThreadLocale
GetStartupInfoW
DeleteFileA
VirtualQuery
SetCriticalSectionSpinCount
TlsSetValue
GetConsoleCP
LCMapStringA

advapi32

RegSetValueW
GetUserNameW
CreateServiceA
RegCreateKeyA
RegFlushKey
InitiateSystemShutdownW
CryptGetHashParam
RegDeleteValueA
LogonUserA
RegEnumKeyW
StartServiceW
AbortSystemShutdownA
CryptSetHashParam
LookupAccountSidW
GetUserNameA
RegDeleteValueW
CryptHashSessionKey
CryptEnumProviderTypesW
CryptEncrypt
CryptEnumProviderTypesA
RegReplaceKeyA
RegQueryValueExA
RegRestoreKeyA
LookupPrivilegeValueA
LookupPrivilegeDisplayNameW

comctl32

InitCommonControlsEx

Sections

.text
Size: 222KB - Virtual size: 221KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 316KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a23741ecb86a6caeaf1babb3b7cd3f08

Headers

File Characteristics

Imports

gdi32

user32

kernel32

advapi32

comctl32

Sections

.text Size: 222KB - Virtual size: 221KB

.rdata Size: 11KB - Virtual size: 27KB

.data Size: 316KB - Virtual size: 316KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 222KB - Virtual size: 221KB

.rdata
Size: 11KB - Virtual size: 27KB

.data
Size: 316KB - Virtual size: 316KB

.rsrc
Size: 8KB - Virtual size: 8KB