ef56cd49636539868ba9f76315eb77b5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ef56cd49636539868ba9f76315eb77b5_JaffaCakes118
Size

424KB
MD5

ef56cd49636539868ba9f76315eb77b5
SHA1

4eb323d1d9d273ef5eb42fa594c4c8ada1f85028
SHA256

b4b8bb2f624689589a67501cf6832ab23a826f04574e4e2b40a6532b0b78f3e1
SHA512

6d38356d391fd06cf39f9697e71b2ea18683eab7271728612935f78fe17d9005413ee2983c48850a739da3364afafeb149e9f8b0f64cc16ca47126877fd1bca1
SSDEEP

6144:4ee7+XlpzxMYntBKXojWpUcHAh5NqwqehlMjCVbeK:4eW+X7zxMYnO46prgh5/6CVSK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ef56cd49636539868ba9f76315eb77b5_JaffaCakes118

Files

ef56cd49636539868ba9f76315eb77b5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dcb36bee94a51c9770e6d81c0db031f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

DestroyPropertySheetPage
DrawStatusTextA
DrawStatusTextW
CreateToolbarEx
InitCommonControlsEx
ImageList_SetBkColor
CreateStatusWindowW
_TrackMouseEvent

kernel32

GetStringTypeA
SetHandleCount
SetEnvironmentVariableA
CreateNamedPipeA
GetStringTypeW
LocalCompact
GetTimeZoneInformation
HeapFree
GetThreadLocale
GetStartupInfoA
GlobalUnlock
WriteFile
GetSystemInfo
GetCurrentProcessId
MultiByteToWideChar
TlsGetValue
RtlMoveMemory
GetCurrentThread
CreateMutexA
EnterCriticalSection
lstrcmpA
ExitProcess
GetModuleFileNameW
GetModuleFileNameA
GetUserDefaultLCID
GetLastError
SetStdHandle
CloseHandle
TlsSetValue
GetCurrentProcess
LeaveCriticalSection
VirtualAlloc
CommConfigDialogW
GetCommandLineA
GetOEMCP
FlushFileBuffers
GlobalAddAtomA
GetLocaleInfoW
PulseEvent
SetLastError
GetStdHandle
HeapReAlloc
SetThreadPriority
CompareStringW
IsValidCodePage
LCMapStringA
TerminateProcess
EnumSystemLocalesA
LoadLibraryA
VirtualProtect
GetSystemTimeAsFileTime
SetFilePointer
GetPrivateProfileSectionW
SetConsoleTitleA
GetStartupInfoW
InitializeCriticalSection
lstrcpy
QueryPerformanceCounter
HeapAlloc
OpenMutexA
FreeEnvironmentStringsW
GetCurrentThreadId
VirtualFree
GetFileType
GetCommandLineW
EnumResourceNamesW
CompareStringA
IsValidLocale
GetACP
IsBadWritePtr
ReadFile
VirtualQuery
HeapCreate
CreateDirectoryW
GetTickCount
GetLocaleInfoA
GetEnvironmentStringsW
HeapSize
RtlUnwind
WritePrivateProfileStructW
GetModuleHandleA
WriteConsoleW
GetProcAddress
RemoveDirectoryW
DebugBreak
TlsFree
HeapValidate
LCMapStringW
GetEnvironmentStrings
GetTimeFormatA
LocalReAlloc
GetDateFormatA
GetFullPathNameA
FreeEnvironmentStringsA
InterlockedExchange
GetVersionExA
UnhandledExceptionFilter
GetSystemTime
lstrcmpW
TlsAlloc
WideCharToMultiByte
DeleteCriticalSection
GetCPInfo
HeapDestroy
InterlockedCompareExchange
FlushConsoleInputBuffer
GetPrivateProfileIntW

user32

CloseDesktop
IsClipboardFormatAvailable
IsCharAlphaW
GetKeyboardType
GetClipboardFormatNameW
DdeFreeStringHandle
GetClassInfoW
BeginPaint
RegisterClassExA
DdeQueryStringA
ShowWindow
ScrollDC
ToAsciiEx
GetForegroundWindow
RegisterClassA
GetScrollRange
SetWindowPlacement
GetMenuDefaultItem
UnregisterClassW
ReleaseDC
SetCaretPos
RemovePropA
LoadMenuW
GetMessagePos
DestroyWindow
ReuseDDElParam
GetFocus
GetMenuItemID
CharNextA
ShowCaret
SetClassWord
DestroyCursor
EnumDisplayMonitors
RealChildWindowFromPoint
UnhookWindowsHook
DestroyCaret
VkKeyScanExA
IsChild
MessageBoxA
CreateWindowExA
RegisterClipboardFormatW
GetUserObjectInformationA
CloseWindow
GetMenuItemCount
FindWindowExW
GetProcessDefaultLayout
DefWindowProcA
CopyAcceleratorTableA
SendIMEMessageExW
EndPaint
ToUnicode
GetCursorInfo
InSendMessage

Sections

.text
Size: 140KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dcb36bee94a51c9770e6d81c0db031f0

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 140KB - Virtual size: 136KB

.rdata Size: 104KB - Virtual size: 100KB

.data Size: 96KB - Virtual size: 100KB

.rsrc Size: 80KB - Virtual size: 79KB

.text
Size: 140KB - Virtual size: 136KB

.rdata
Size: 104KB - Virtual size: 100KB

.data
Size: 96KB - Virtual size: 100KB

.rsrc
Size: 80KB - Virtual size: 79KB