ef8c2f25a691da3dee796bc98776b463_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ef8c2f25a691da3dee796bc98776b463_JaffaCakes118
Size

138KB
MD5

ef8c2f25a691da3dee796bc98776b463
SHA1

bbe4f518525654b55d029a6d424831a137be3e10
SHA256

5a3974596f2211673627f2010f76c05e9aa2eb0aa242349fc44e68a40b878ff0
SHA512

dbc08133ebd03a6cc63c5ca4aa9eef3921cc2bfe214683b6b91c88156bb623595ea86c2031e10f36794259b7cb3430acb7b4b594d8065fe9f999e7c0e8ceb98c
SSDEEP

3072:3nUugVu8VDvh6MEv8J4ZepVawQJYugX9Cay40E6D1UU:QBoMEEuOVFQJYHp6p3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ef8c2f25a691da3dee796bc98776b463_JaffaCakes118

Files

ef8c2f25a691da3dee796bc98776b463_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bdf0bb0a44f8aa378e76c8a5438cee8e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStartupInfoA
TerminateProcess
WideCharToMultiByte
GetPrivateProfileStringA
GetCommandLineA
SetCurrentDirectoryA
GetStartupInfoW
EnumCalendarInfoA
GetDiskFreeSpaceA
VirtualProtect
GetModuleHandleA

user32

LoadCursorA
DispatchMessageA
DrawMenuBar
CreateWindowExA
GetDlgItem
GetTopWindow
AdjustWindowRectEx
GetWindowTextA

msvcrt

log10
__set_app_type
__p__commode
_XcptFilter
wcsncmp
__p__fmode
_except_handler3
_initterm
_mbsrchr
strcspn
__setusermatherr
strerror
__getmainargs
towlower
wcsstr
_acmdln
_isctype
_stat
fopen
_adjust_fdiv
exit
_putenv
wcstoul

advapi32

RegOpenKeyExW
RegEnumKeyA
AddAccessAllowedAce
FreeSid
CryptDestroyHash
RegQueryValueExA
EqualSid
GetSecurityDescriptorDacl
RegQueryValueA
InitializeAcl
SetSecurityDescriptorDacl

oleaut32

SysStringByteLen
SysReAllocStringLen
VariantInit
SafeArrayGetUBound
GetActiveObject
VariantCopy
GetErrorInfo
SysFreeString
SafeArrayPutElement

shell32

SHGetDiskFreeSpaceExW
SHCreateDirectoryExW
ShellExecuteW
Shell_NotifyIconW
SHAppBarMessage
SHGetFolderPathW
ExtractIconExW

comctl32

CreateStatusWindowA
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_GetIcon
ImageList_GetBkColor
ImageList_Create

ole32

CreateILockBytesOnHGlobal
OleRun
CoInitialize
ReleaseStgMedium
StgOpenStorage
CoRegisterMessageFilter
CreateStreamOnHGlobal
CoTaskMemAlloc

version

VerInstallFileA
VerLanguageNameA

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bdf0bb0a44f8aa378e76c8a5438cee8e

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

advapi32

oleaut32

shell32

comctl32

ole32

version

Sections

.text Size: 88KB - Virtual size: 87KB

.data Size: 15KB - Virtual size: 15KB

.rsrc Size: 34KB - Virtual size: 33KB

.text
Size: 88KB - Virtual size: 87KB

.data
Size: 15KB - Virtual size: 15KB

.rsrc
Size: 34KB - Virtual size: 33KB