efb7e87c957c568783b59968a97d0d5c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

efb7e87c957c568783b59968a97d0d5c_JaffaCakes118
Size

68KB
MD5

efb7e87c957c568783b59968a97d0d5c
SHA1

19880f37a0dbd26acbf60bce5ccc53b78bae7265
SHA256

2a1427f8a8f9867437da2654f6658eb04ff8b5df7cdd6e2c36ae1b61fe96b52f
SHA512

8e52d3f86a409859f9e329eb05d9c9d311ff388375ad92eaeabdd7e1f815f919adabdb6178f3d5eacdd8ea04a4c86ed5c466ea2348d9ef76b0b4b63010c74175
SSDEEP

768:XW3bHxjXUYONCQ5a469OiTKXVKIvYZxbRwrMHmh+rtFUMm57aPNT9hYqCs/pjeTe:XWLHxmQl2QvZRI+rHnmGT9hx5pIk3x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
efb7e87c957c568783b59968a97d0d5c_JaffaCakes118

Files

efb7e87c957c568783b59968a97d0d5c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0bd08ee04f16ade18fc59e9a0b060a88

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

ICRemove
ICMThunk32
ICImageCompress
GetOpenFileNamePreviewA
DrawDibEnd

user32

CharToOemBuffA
CreateDialogIndirectParamA
CreateDialogParamA
CreateMenu
CreatePopupMenu
DrawMenuBar
EnableScrollBar
EnableWindow
GetDC
OemToCharA

kernel32

GetPrivateProfileStringA
OpenFile
lstrcmpiA
lstrcatA
SetUnhandledExceptionFilter
LocalAlloc
GetStartupInfoA
GetModuleHandleA
GetFileSize
GetCommandLineA
ExitProcess
CloseHandle
SetLastError

advapi32

LsaEnumerateAccounts
LsaEnumerateAccountsWithUserRight
LsaEnumerateTrustedDomains
LsaCreateTrustedDomainEx
LsaICLookupSids
LsaLookupNames
RegCloseKey
RegEnumKeyA
RegQueryValueA
LsaClose
LsaGetQuotasForAccount

msvbvm60

__vbaBoolVarNull
__vbaBoolErrVar
__vbaAryMove
__vbaCopyBytes
__vbaCopyBytesZero
__vbaCyErrVar
__vbaDateR4
__vbaEraseNoPop
__vbaAryDestruct
__vbaFailedFriend
__vbaAryCopy
__vbaCastObjVar

dsound

DirectSoundEnumerateW
DirectSoundCreate
DirectSoundCreate8
DirectSoundCaptureEnumerateA

ole32

OleInitialize
GetRunningObjectTable
CreateStreamOnHGlobal
OleIsCurrentClipboard
CoTaskMemAlloc
CoInitialize
OleUninitialize
RevokeDragDrop
StringFromGUID2
CoUninitialize
CoCreateInstance
CoGetClassObject

Sections

.text
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0bd08ee04f16ade18fc59e9a0b060a88

Headers

File Characteristics

Imports

msvfw32

user32

kernel32

advapi32

msvbvm60

dsound

ole32

Sections

.text Size: 26KB - Virtual size: 28KB

.rdata Size: 15KB - Virtual size: 16KB

.data Size: 14KB - Virtual size: 16KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 26KB - Virtual size: 28KB

.rdata
Size: 15KB - Virtual size: 16KB

.data
Size: 14KB - Virtual size: 16KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB