ebe515f4b6b0a913c327dd8f2cc2e24e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ebe515f4b6b0a913c327dd8f2cc2e24e_JaffaCakes118
Size

928KB
MD5

ebe515f4b6b0a913c327dd8f2cc2e24e
SHA1

b2b83188db826989385e75de37e93513265f063d
SHA256

17af9525d9a569ef22ce93756cdee6efe0213cb51bff4dba5bbe7fbc8d068905
SHA512

5b6a5c8d7b3be8a80d5793486ee3e3b779eec1a41c78e9d07ba660ff5d0e413f84cfb37e67a3d16007b84cd4e7ac1e599c19104a2fc7f556f5232aaeb3c0b74a
SSDEEP

12288:ZTO0fQJmw6hmrBemIEDUVBmPQ8xF9fBMrYoviOHtCo2b5ccYWt+gh+5k92:804JbrBe3EDMBIQgzJ5oqs2bF/+Zk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ebe515f4b6b0a913c327dd8f2cc2e24e_JaffaCakes118

Files

ebe515f4b6b0a913c327dd8f2cc2e24e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f59fcaafa0c8811c56bcfd34f8e00989

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetDataFromIDListA

ole32

OleCreate
IsAccelerator
StgCreateDocfile
OleCreateLinkFromData
OleCreateFromFile
OleCreateFromData
OleDestroyMenuDescriptor
OleCreateLinkToFile
OleCreateMenuDescriptor
OleSaveToStream
OleDuplicateData
OleSetMenuDescriptor
CoTaskMemAlloc
CLSIDFromProgID
StgOpenStorage
CoRegisterMessageFilter
CreateDataAdviseHolder
CoRevokeClassObject
CreateOleAdviseHolder
StringFromCLSID
OleSave
CreateStreamOnHGlobal
OleRegGetMiscStatus
OleGetIconOfClass
OleTranslateAccelerator
OleRegEnumVerbs

gdi32

GetColorAdjustment
GetDCOrgEx
SetStretchBltMode
GetPath
SetBkMode
PolyDraw
GdiComment
GetCharABCWidthsFloatA
GetViewportOrgEx
SelectClipPath
PolyPolygon
SetPixelV
SetAbortProc
CloseMetaFile
PolyBezier
GetCharABCWidthsA
FlattenPath
SetColorAdjustment
SetPixel
ArcTo
SetBkColor
ExtTextOutA
LineTo
FillRgn
GetCharWidthFloatA
SetRectRgn
GetBrushOrgEx
PlayMetaFile
GetCharWidthA
PlgBlt
Pie
TextOutA
PlayMetaFileRecord
GetKerningPairsA
GetPaletteEntries
GetMiterLimit
DrawEscape
ExtEscape
GetObjectType
EnumObjects
SetViewportExtEx
GetBkColor
GetPixel
GetStretchBltMode
CreateRectRgnIndirect
SetBoundsRect
CreateEllipticRgnIndirect
GetViewportExtEx
SetMiterLimit
CopyMetaFileA
CreateDCA
RectInRegion
SelectClipRgn
CreateDiscardableBitmap
CombineRgn
CreatePolyPolygonRgn
CreateDIBPatternBrushPt
GetTextColor
OffsetViewportOrgEx
AbortPath
Polygon
GetBitmapBits
CreateRectRgn
CreateSolidBrush
GetBoundsRect
AngleArc
CreateBitmapIndirect
Polyline
OffsetClipRgn
EnumMetaFile
WidenPath
CreatePalette
GetArcDirection
RoundRect
GetTextFaceA
GetObjectA
GetAspectRatioFilterEx
CreateFontA
MoveToEx
GetPolyFillMode
GetBkMode
AnimatePalette
GetTextMetricsA
SetMapperFlags
CreateMetaFileA

oleaut32

LoadTypeLi

user32

GetWindow
BeginPaint
GetKeyState
PeekMessageA
EndPaint
GetMenuCheckMarkDimensions
SetRectEmpty
IsMenu
DispatchMessageA
PostThreadMessageA
LoadIconA
DrawIcon
TranslateMessage
DefWindowProcA
SetMenu
RegisterClassA
UnregisterClassA
ReleaseCapture
RegisterClassExA
SetWindowTextA
MapDialogRect
TrackPopupMenu
DrawTextA
LoadCursorA
GetWindowDC
GetDesktopWindow
GetTopWindow
CharUpperA
InvalidateRect
SetCapture
IsWindowEnabled
GetDC
CheckDlgButton
PostMessageA
GetSubMenu
IsWindow
UnhookWindowsHookEx
GetWindowTextA
GetSystemMetrics
DestroyIcon
LoadStringA
SetMenuDefaultItem
DestroyMenu
ValidateRect
InvalidateRgn
LoadBitmapA
PtInRect
GetCapture

comctl32

ImageList_Create
ImageList_DragEnter
InitCommonControlsEx

advapi32

RegCreateKeyExW
RegDeleteValueW

kernel32

WideCharToMultiByte
FreeEnvironmentStringsA
InterlockedIncrement
IsDebuggerPresent
GetDateFormatA
HeapValidate
MultiByteToWideChar
InitializeCriticalSection
SetUnhandledExceptionFilter
RaiseException
GetFileType
GetVersionExA
SetHandleCount
LoadLibraryW
TlsGetValue
LoadLibraryA
GetConsoleCP
GetLastError
InterlockedExchange
GetStringTypeW
GetCommandLineA
SetStdHandle
GetProcAddress
HeapReAlloc
OutputDebugStringW
GetConsoleOutputCP
FreeEnvironmentStringsW
InterlockedDecrement
GetEnvironmentStrings
SetConsoleCtrlHandler
GetStdHandle
OutputDebugStringA
DebugBreak
VirtualQuery
ReadFile
IsValidCodePage
RtlUnwind
CompareStringA
GetModuleFileNameA
VirtualFree
CreateMutexA
WriteConsoleW
GetCPInfo
DeleteCriticalSection
WriteFile
GetTimeFormatA
GetOEMCP
CloseHandle
CreateFileA
WriteConsoleA
LCMapStringA
HeapFree
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStringTypeA
GetEnvironmentStringsW
GetCurrentProcessId
EnterCriticalSection
SetFilePointer
GetConsoleMode
CompareStringW
GetCurrentProcess
LeaveCriticalSection
GetStartupInfoA
GetACP
FlushFileBuffers
ExitProcess
GetModuleFileNameW
GetTickCount
TlsAlloc
VirtualAlloc
HeapDestroy
HeapCreate
LCMapStringW
SetEnvironmentVariableA
GetCurrentThreadId
IsBadReadPtr
GetModuleHandleA
GetLocaleInfoA
GetTimeZoneInformation
GetProcessHeap
TerminateProcess
TlsSetValue
UnhandledExceptionFilter
HeapAlloc
TlsFree
SetLastError

Sections

.text
Size: 224KB - Virtual size: 222KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 500KB - Virtual size: 496KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 120KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f59fcaafa0c8811c56bcfd34f8e00989

Headers

File Characteristics

Imports

shell32

ole32

gdi32

oleaut32

user32

comctl32

advapi32

kernel32

Sections

.text Size: 224KB - Virtual size: 222KB

.rdata Size: 500KB - Virtual size: 496KB

.data Size: 120KB - Virtual size: 117KB

.rsrc Size: 80KB - Virtual size: 76KB

.text
Size: 224KB - Virtual size: 222KB

.rdata
Size: 500KB - Virtual size: 496KB

.data
Size: 120KB - Virtual size: 117KB

.rsrc
Size: 80KB - Virtual size: 76KB