ef9d090bfaaf222f2f5ebebc4a009459_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ef9d090bfaaf222f2f5ebebc4a009459_JaffaCakes118
Size

173KB
MD5

ef9d090bfaaf222f2f5ebebc4a009459
SHA1

8465e8c1b0ca5cd213e67090ba8cceb3ae8b96cb
SHA256

6366bf7b9e1c78b7f6b4e992f96ad71739c7358027f3e66be6316caf93f0765a
SHA512

0659ddab4b4bb0fc57c34ce3c03bd67850b3c62a7db48cc0fceb67f9d5112eed1efe5fdc88c0bd9b86fff9051d757f56670f27c1d0e0b1c63fab506f9aae6096
SSDEEP

3072:5ZAujR10CUVVqZbvuJRo2VwZ46iETKTC9DMAYjKQZGQu:PDr0LCZjT2V36bKTC9DMAYjZC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ef9d090bfaaf222f2f5ebebc4a009459_JaffaCakes118

Files

ef9d090bfaaf222f2f5ebebc4a009459_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3a32c819543b1331e0df2866f3aedb37

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoFreeUnusedLibraries
CoRevokeClassObject
CoTaskMemFree
CoUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CoCreateInstance
CoInitialize
OleInitialize
CoRegisterMessageFilter
OleUninitialize
StgOpenStorageOnILockBytes
CLSIDFromProgID
CoGetClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoTaskMemAlloc
CLSIDFromString

advapi32

RegCreateKeyExW
RegEnumKeyW
RegEnumKeyExW
RegQueryValueW
RegCloseKey
RegOpenKeyExW
RegDeleteKeyW
RegOpenKeyW
RegSetValueExW
RegQueryInfoKeyW
RegQueryValueExW

comdlg32

GetFileTitleW

shlwapi

PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
PathFileExistsW
PathFindExtensionW
PathFindFileNameW
PathAppendW

gdi32

ScaleViewportExtEx
SetBkColor
SetTextColor
GetViewportExtEx
SetWindowExtEx
Escape
SetViewportExtEx
GetWindowExtEx
DeleteObject
SaveDC
SelectObject
DeleteDC
SetViewportOrgEx
RestoreDC
GetMapMode
ExtSelectClipRgn
GetBkColor
GetStockObject
GetObjectW
GetDeviceCaps
TextOutW
OffsetViewportOrgEx
GetClipBox
SetMapMode
ExtTextOutW
RectVisible
PtVisible
ScaleWindowExtEx
GetTextColor
GetRgnBox
CreateBitmap
CreateRectRgnIndirect

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

user32

GetClassInfoW
CharNextW
SendDlgItemMessageA
IntersectRect
IsChild
EqualRect
UpdateWindow
GetTopWindow
SetForegroundWindow
IsWindow
CreateWindowExW
GetClassLongW
MapWindowPoints
GetMenu
IsIconic
GetClientRect
WinHelpW
GetPropW
DefWindowProcW
GetNextDlgGroupItem
AdjustWindowRectEx
SetRect
IsRectEmpty
SetActiveWindow
RemovePropW
LoadIconW
RegisterClassW
InvalidateRgn
GetNextDlgTabItem
OffsetRect
CopyAcceleratorTableW
GetWindowPlacement
RegisterWindowMessageW
GetForegroundWindow
GetMessageTime
CharUpperW
MessageBeep
InvalidateRect
SetPropW
GetMessagePos
GetClassInfoExW
CallWindowProcW
DestroyMenu

kernel32

GetCalendarInfoW
GetVersion
EnumResourceLanguagesW
DeleteCriticalSection
MoveFileW
GetVersionExW
MultiByteToWideChar
SetFilePointer
lstrcmpiA
GetFileAttributesW
LoadResource
ReleaseMutex
GetProcAddress
FindFirstFileW
InterlockedDecrement
WideCharToMultiByte
InitializeCriticalSection
FindResourceW
CloseHandle
GetCurrentDirectoryW
GetThreadContext
SetFileTime
CreateFileW
FreeLibrary
WaitForSingleObject
GetACP
EnumResourceNamesA
GetSystemDefaultLangID
SizeofResource
RaiseException
GetModuleHandleW
LoadLibraryW
ExitProcess
DeleteFileW
GetLocaleInfoA
ReadFile
WriteFile
CreateDirectoryW
GetModuleFileNameW
LocalFileTimeToFileTime
ConvertDefaultLocale
CreateMutexW
GetCurrentProcessId
SystemTimeToFileTime
FindNextFileW
GetLocaleInfoW
RemoveDirectoryW
lstrcpyW
LockResource
InterlockedExchange
VirtualFree
FindClose
GetThreadLocale
lstrcmpA

oledlg

OleUIBusyW

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a32c819543b1331e0df2866f3aedb37

Headers

File Characteristics

Imports

ole32

advapi32

comdlg32

shlwapi

gdi32

winspool.drv

shell32

user32

kernel32

oledlg

Sections

.text Size: 98KB - Virtual size: 98KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 67KB - Virtual size: 67KB

.edata Size: 1024B - Virtual size: 92KB

.text
Size: 98KB - Virtual size: 98KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 67KB - Virtual size: 67KB

.edata
Size: 1024B - Virtual size: 92KB