ef1dc26e0bfaeb536aff1b2f713f7566_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ef1dc26e0bfaeb536aff1b2f713f7566_JaffaCakes118
Size

671KB
MD5

ef1dc26e0bfaeb536aff1b2f713f7566
SHA1

310ac030c4c8231826745e6d3a0242ff1e7283aa
SHA256

0798b30a695cd1cd9994f79b9e8f6c4fc058ac6c95dfe48e1c32255253f0295e
SHA512

fe3d9c500a9033d2ff7fa1fbadd1d69e12f9ef4dc127686df0cc77e4067554436a917015d787bde39a92d6531ebb4131b21c9d5c778f97d627076323182afe4d
SSDEEP

12288:RCX118jS5/2sCS5FmOQ5suKDVa9ER9DyNhQvwu2H++JY/WfAPXKeF:8P8WyS5a5suKD4EUhDJ++qvKeF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ef1dc26e0bfaeb536aff1b2f713f7566_JaffaCakes118

Files

ef1dc26e0bfaeb536aff1b2f713f7566_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3a9c52ce681ea7cb5229efb2b901369a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

gdi32

InvertRgn
ScaleViewportExtEx
SetMapperFlags
DeviceCapabilitiesExA
SetBitmapBits
GetOutlineTextMetricsA
GetTextMetricsW
SetDIBitsToDevice
SetViewportExtEx
DescribePixelFormat
GetMetaFileBitsEx
GetGraphicsMode
GetTextCharacterExtra
CreateDIBPatternBrush

comdlg32

ChooseColorW

kernel32

GetStringTypeW
HeapFree
GetConsoleCP
VirtualAlloc
SetUnhandledExceptionFilter
GetACP
Sleep
HeapAlloc
SetConsoleCtrlHandler
HeapCreate
OpenMutexA
SetFilePointer
OutputDebugStringA
LCMapStringW
UnhandledExceptionFilter
GetModuleFileNameA
TlsGetValue
TlsAlloc
SetEnvironmentVariableA
WideCharToMultiByte
MultiByteToWideChar
VirtualFree
CreateMutexA
GetStartupInfoA
LoadLibraryW
TlsFree
InterlockedIncrement
InitializeCriticalSectionAndSpinCount
lstrlenA
CreateFileA
GetCurrentThread
InterlockedDecrement
TerminateProcess
GetProcAddress
EnterCriticalSection
GetProcessHeap
GetTickCount
GetCommandLineA
CloseHandle
FreeLibrary
ReadFile
LCMapStringA
IsBadReadPtr
HeapDestroy
GetModuleHandleW
InterlockedExchange
TlsSetValue
IsDebuggerPresent
GetUserDefaultLCID
WriteFile
RtlUnwind
GetCurrentProcess
FlushFileBuffers
SetStdHandle
OutputDebugStringW
GetNamedPipeHandleStateW
IsValidCodePage
GetCurrentProcessId
GetDateFormatA
LeaveCriticalSection
GetLastError
GetModuleFileNameW
WriteConsoleA
QueryPerformanceCounter
RaiseException
GetModuleHandleA
GetStdHandle
CompareStringW
MoveFileW
ExitProcess
GetStringTypeA
HeapReAlloc
GetConsoleOutputCP
GetStartupInfoW
GetLocaleInfoW
GetEnvironmentStringsW
GetCurrentThreadId
FreeEnvironmentStringsW
GetCommandLineW
LoadLibraryA
IsValidLocale
GetConsoleMode
GetTimeFormatA
CompareStringA
SetHandleCount
GetLocaleInfoA
ConvertDefaultLocale
GetTimeZoneInformation
VirtualQuery
EnumSystemLocalesA
HeapValidate
GetOEMCP
DebugBreak
SetLastError
HeapSize
GetSystemTimeAsFileTime
WriteConsoleW
GetFileType
GetCPInfo
DeleteCriticalSection

user32

EnumDisplayDevicesW
CloseWindow
FrameRect
UnionRect
TranslateMDISysAccel
RegisterClassA
SetWindowLongW
GetNextDlgGroupItem
DestroyCaret
SetForegroundWindow
GetWindowTextW
GetClassWord
EndMenu
SetFocus
SetClassLongA
RegisterClassExA
CallMsgFilter

advapi32

RegSetKeySecurity
CryptGetDefaultProviderA
CryptSetKeyParam
CryptGetKeyParam
RegQueryValueW
CryptAcquireContextA
RegQueryInfoKeyW
LookupPrivilegeDisplayNameW
CryptSetProviderExA

shell32

SHGetFileInfo
SHInvokePrinterCommandA
ShellExecuteExW
SHGetSpecialFolderPathA
SheChangeDirA

Sections

.text
Size: 465KB - Virtual size: 464KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a9c52ce681ea7cb5229efb2b901369a

Headers

File Characteristics

Imports

comctl32

gdi32

comdlg32

kernel32

user32

advapi32

shell32

Sections

.text Size: 465KB - Virtual size: 464KB

.rdata Size: 84KB - Virtual size: 106KB

.data Size: 106KB - Virtual size: 106KB

.rsrc Size: 15KB - Virtual size: 14KB

.text
Size: 465KB - Virtual size: 464KB

.rdata
Size: 84KB - Virtual size: 106KB

.data
Size: 106KB - Virtual size: 106KB

.rsrc
Size: 15KB - Virtual size: 14KB