f6680db99a901f5bfa22eb7b1963c142_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f6680db99a901f5bfa22eb7b1963c142_JaffaCakes118
Size

154KB
MD5

f6680db99a901f5bfa22eb7b1963c142
SHA1

976ec8207efba849e9a0cabf51870e85a9894953
SHA256

c82faeebd6e03e9d45d1968966690d5f9123f151eace8424f310bc85000a3ff9
SHA512

9e12e9b4fbdaa67b88fc046e51a0ffcc9da694997b464cf2832f00c6f40620446cde6b8021f2671821cd2ba65119f74af8c67c437d094972196a5cf92092c29d
SSDEEP

3072:6TCfx6u5UjIbpgS+3GPx1HvNgkny/xvwWu8OfEw9qsX8McotHpoV1r2hQO+94xX5:6+fxd5UjIqS+W5xeDFlOffNcotJ0r2hT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f6680db99a901f5bfa22eb7b1963c142_JaffaCakes118

Files

f6680db99a901f5bfa22eb7b1963c142_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d354a48cf924d41606e2662564d30067

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

shell32

ShellExecuteW
SHGetSpecialFolderLocation
SHGetPathFromIDListW

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

kernel32

WritePrivateProfileSectionW
CreateFileA
GetSystemDirectoryW
SetLastError
IsProcessorFeaturePresent
DeleteCriticalSection
GetConsoleMode
HeapDestroy
WriteFile
GetModuleHandleA
VirtualFree
LCMapStringA
lstrcmpiW
WriteConsoleInputVDMA
FreeEnvironmentStringsA
LoadLibraryW
GetModuleFileNameA
TlsSetValue
GetProcAddress
TlsGetValue
FlushFileBuffers
CopyFileW
InterlockedDecrement
GetVersion
WideCharToMultiByte
SetUnhandledExceptionFilter
SetStdHandle
ExitProcess
GetCPInfo
GetEnvironmentStringsW
GetProcessHandleCount
FindResourceW
lstrlenA
GetDriveTypeW
LoadLibraryA
InterlockedIncrement
GetVersionExW
LoadResource
ReadFile
GetFileType
GetLocaleInfoA
RaiseException
GetACP
GetStringTypeW
GetConsoleOutputCP
GetCurrentProcessId
EnumResourceNamesA
CloseHandle
LoadLibraryExW
HeapFree
GetOEMCP
GetStdHandle
lstrcmpA
GetStringTypeA
GetStartupInfoA
CreateFileMappingW
LCMapStringW
Sleep
GetLastError
SetHandleCount
GetModuleHandleW
TlsFree
LocalFree
WriteConsoleA
InitializeCriticalSection
GetCommandLineW
VirtualAlloc
UnhandledExceptionFilter
GetVersionExA
GetConsoleCP
GetTickCount
GetCurrentProcess
SetFilePointer
TlsAlloc
QueryPerformanceCounter
LocalAlloc
FreeEnvironmentStringsW
GetThreadLocale
FlushInstructionCache
GetCommandLineA
GetEnvironmentStrings
GetSystemTimeAsFileTime
FreeLibrary
WaitForSingleObject
GetStartupInfoW
IsDebuggerPresent
HeapAlloc
HeapSize
CreateFileW
InterlockedExchange
GetFileSize
DeleteFileW
SizeofResource
GetFileAttributesW
LockResource
GetProcessHeap
InterlockedCompareExchange
LeaveCriticalSection
CreateSemaphoreW
MulDiv
GetModuleFileNameW
CreateProcessW
RtlUnwind
WriteConsoleW
GetCurrentThreadId
HeapCreate
HeapReAlloc
lstrlenW

user32

GetWindowRect
TranslateMessage
GetWindowInfo
SetWindowTextW
DestroyWindow
GetClientRect
LoadCursorW
GetDC
DispatchMessageW
MapWindowPoints
GetWindowTextLengthW
GetDlgItemTextW
PeekMessageW
SetDlgItemTextW
MessageBoxW
GetParent
BeginPaint
EndPaint
SystemParametersInfoW
SetWindowPos
GetDlgItem
GetWindow
SetCapture
GetClassInfoExW
CreateWindowExW
RegisterClassExW
EndDialog

msvfw32

ICInfo

ole32

CoTaskMemAlloc
CoUninitialize
CoCreateInstance
CoTaskMemRealloc
CoTaskMemFree
CoInitialize

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

Sections

.text
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idive
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d354a48cf924d41606e2662564d30067

Headers

File Characteristics

Imports

shell32

gdi32

kernel32

user32

msvfw32

ole32

version

Sections

.text Size: 83KB - Virtual size: 82KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 65KB - Virtual size: 64KB

.idive Size: 1024B - Virtual size: 100KB

.text
Size: 83KB - Virtual size: 82KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 65KB - Virtual size: 64KB

.idive
Size: 1024B - Virtual size: 100KB