e9c53c49965a872049959d56fce9c079_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e9c53c49965a872049959d56fce9c079_JaffaCakes118
Size

240KB
MD5

e9c53c49965a872049959d56fce9c079
SHA1

26db09f1229b041453731466d81f3cdc7df7b70e
SHA256

cd94f5cc4d7ec4a445a749cf5cbb6e569100755cdb16b770a14e30abf7a2f376
SHA512

30d142422e40f481914cedeeb1e31f42011bd6a64ade20092669b9b2055ce426ee6ec52f65effed3e3af8368c59b781af441b60a3b86849fac9628e481485dc2
SSDEEP

6144:sOrzUc1isQab7k4iBl2BeAHT/YyA3yqUHLG7HQ:Xkc7bzizAzKu8Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e9c53c49965a872049959d56fce9c079_JaffaCakes118

Files

e9c53c49965a872049959d56fce9c079_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0076ba3684e4d2cb28e6b087a3bd8864

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalAlloc
GetCalendarInfoW
GetSystemTime
GetEnvironmentStringsW
lstrcatA
OpenMutexW
SleepEx
GetEnvironmentVariableW
GetEnvironmentStringsA
GetNumberFormatW
lstrcat
CreateSemaphoreW
BeginUpdateResourceW
MultiByteToWideChar
GetProcAddress
OpenMutexA
SetComputerNameA
GetModuleFileNameW
LocalFree
GetSystemDefaultLangID
lstrcpynW
GetVersionExA
GetOEMCP
lstrcpyW
GetCurrentProcessId
GetCurrentThreadId
FindAtomA
lstrcpyn
GetFileAttributesW
GetLongPathNameW
HeapCreate
RemoveDirectoryW
OpenWaitableTimerA
GetLogicalDriveStringsW
EnumCalendarInfoW
FatalAppExitA
GetExpandedNameW
SetErrorMode
GetVersion
CompareFileTime
GetTimeFormatW
EnumTimeFormatsA
BeginUpdateResourceA
GetCPInfo
QueryPerformanceFrequency
Beep
GlobalFindAtomW
CreateMutexW
CreateMailslotA
SetCurrentDirectoryA
SystemTimeToFileTime
WaitForMultipleObjects
CreateMailslotW
GetTempPathW
lstrcpynA
MulDiv
GetFullPathNameA
LoadLibraryExA

user32

LoadMenuIndirectW
UnregisterClassW
GetWindowRgn
GetMenuItemInfoA
InvalidateRect
IsMenu
CharUpperA
GetClassInfoA
CreateDialogIndirectParamA
GetMenuItemCount
GetDlgItemInt
LoadBitmapW
CharNextW
GetMessageW
GetMenuInfo
keybd_event
DestroyMenu
DefWindowProcA
ShowCaret
LoadIconA
InsertMenuA
GetDlgItemTextA
UnregisterClassA
CreateDesktopW
DestroyIcon
CopyIcon
EmptyClipboard
RegisterClassW
CharPrevW
LoadCursorW
ShowWindow
DialogBoxParamW
TrackPopupMenuEx
LoadImageA
SetWindowTextA
FindWindowW
UpdateLayeredWindow
CharNextA
CheckMenuItem
DefWindowProcW
ActivateKeyboardLayout
MessageBoxIndirectW
AppendMenuA
GetMenuItemID
GetCaretPos
CharPrevA
PeekMessageW
GetMessageA
CreatePopupMenu
GetMenuStringW
IsDlgButtonChecked
CreateDialogParamA
MessageBoxW
PostMessageW
LoadMenuIndirectA
IsMenu
CreateDesktopA
CopyRect
AppendMenuW
GetDlgItemTextW
LoadMenuW
LoadImageW
InsertMenuItemW
MonitorFromRect
MonitorFromWindow
SetDlgItemInt
WinHelpA
RegisterWindowMessageW
CreateAcceleratorTableW
FindWindowA
DialogBoxParamA
SetCapture
SetWindowLongW
GetClassInfoExW

gdi32

CreateScalableFontResourceW
GetMetaFileW
GetStockObject
CreateICA
GetRasterizerCaps
CreateMetaFileA
CreateBitmap
CreatePolyPolygonRgn
CreateRoundRectRgn
CreateColorSpaceW
TranslateCharsetInfo
CreateHatchBrush
RemoveFontResourceExW

shell32

StrChrIW
SHCreateDirectoryExW
ShellExecuteW
DuplicateIcon
ExtractIconExW
SHGetDiskFreeSpaceExA
Shell_NotifyIconW
StrStrW
StrChrW
StrChrA
Shell_NotifyIcon
SHCreateDirectoryExA
StrCmpNA

oledlg

OleUIPromptUserW
OleUIChangeIconA
OleUIEditLinksW
OleUIInsertObjectA
OleUIObjectPropertiesA
OleUIAddVerbMenuA
OleUIBusyW
OleUIEditLinksA

crypt32

CryptVerifyCertificateSignatureEx
CryptSIPCreateIndirectData
CertIsValidCRLForCertificate
CertGetCTLContextProperty
CertNameToStrA
CertSetEnhancedKeyUsage
CertFreeCertificateChain
I_CryptAddSmartCardCertToStore
CertFindSubjectInSortedCTL
CertAddCertificateLinkToStore
CertFindChainInStore

Sections

.FkAvR
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gE
Size: 5KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Sm
Size: 5KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.s
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.z
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.JSLTVt
Size: 5KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.LTpK
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hP
Size: 5KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xxP
Size: 2KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0076ba3684e4d2cb28e6b087a3bd8864

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

oledlg

crypt32

Sections

.FkAvR Size: 3KB - Virtual size: 2KB

.gE Size: 5KB - Virtual size: 58KB

.Sm Size: 5KB - Virtual size: 258KB

.s Size: 89KB - Virtual size: 89KB

.z Size: 13KB - Virtual size: 13KB

.JSLTVt Size: 5KB - Virtual size: 19KB

.LTpK Size: 90KB - Virtual size: 90KB

.hP Size: 5KB - Virtual size: 315KB

.xxP Size: 2KB - Virtual size: 199KB

.rsrc Size: 9KB - Virtual size: 8KB

.reloc Size: 1024B - Virtual size: 1024B

.FkAvR
Size: 3KB - Virtual size: 2KB

.gE
Size: 5KB - Virtual size: 58KB

.Sm
Size: 5KB - Virtual size: 258KB

.s
Size: 89KB - Virtual size: 89KB

.z
Size: 13KB - Virtual size: 13KB

.JSLTVt
Size: 5KB - Virtual size: 19KB

.LTpK
Size: 90KB - Virtual size: 90KB

.hP
Size: 5KB - Virtual size: 315KB

.xxP
Size: 2KB - Virtual size: 199KB

.rsrc
Size: 9KB - Virtual size: 8KB

.reloc
Size: 1024B - Virtual size: 1024B