f9e5bc78063b1d18073985d4c6da8385_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f9e5bc78063b1d18073985d4c6da8385_JaffaCakes118
Size

4.2MB
MD5

f9e5bc78063b1d18073985d4c6da8385
SHA1

62ef1f2399b2d54e43eda921b22939f9dde74533
SHA256

f01018dfac85c447fd0f0501339a21d3db3cc1f714a392ea37ea770563f6a303
SHA512

00ddb0e00108747737a2f5dd6f2ccd640a3708169452831f394d37f7cbad7e7f4dbc80da07d64a368d76a01b21c9b7ec6f03002caa3c9f8a64fdeaca85ce63f3
SSDEEP

24576:Zj/A82hkUh80/+3wwLoKDt/wsK7LbNLkp0l7ZVKxqTOGcTSQ25:W/117LbNjIxsR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f9e5bc78063b1d18073985d4c6da8385_JaffaCakes118

Files

f9e5bc78063b1d18073985d4c6da8385_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1a1ebcc022ceabd84016d17c95d0b580

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryA
GetModuleFileNameA
CreateMutexA
ReleaseMutex
GetVersionExA
GetShortPathNameA
WriteFile
ReadFile
GetProcAddress
LocalLock
lstrlenA
lstrcpyA
VirtualFree
GetDiskFreeSpaceA
VirtualAlloc
MoveFileExA
FreeResource
LockResource
LoadResource
FindResourceA
SetFilePointer
CreateEventA
FileTimeToLocalFileTime
lstrcpynA
GetDriveTypeA
GetLogicalDrives
FindClose
LocalAlloc
GetLastError
GetVersion
GetTempPathA
GetTempFileNameA
CreateFileA
ResetEvent
DeviceIoControl
GetModuleHandleA
SetEvent
DeleteFileA
FreeLibrary
LocalUnlock
LocalFree
CopyFileA
LoadLibraryA
OpenEventA
CreateDirectoryA
WaitForSingleObject
Sleep
RemoveDirectoryA
GetFileAttributesA
SetFileAttributesA
GetTickCount
CreateThread
GetLocalTime
Beep
GetWindowsDirectoryA
FindFirstFileA
MultiByteToWideChar
FindNextFileA
FileTimeToSystemTime
SetFileTime
lstrcatA
GetEnvironmentStrings
RtlUnwind
GetEnvironmentStringsW
GetACP
CloseHandle
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetEndOfFile
GetStdHandle
SetHandleCount
SetStdHandle
LCMapStringW
LCMapStringA
WideCharToMultiByte
HeapReAlloc
HeapCreate
HeapDestroy
GetCommandLineA
GetStartupInfoA
GetFileType
GetCurrentProcess
TerminateProcess
ExitProcess
HeapAlloc
HeapFree
FreeEnvironmentStringsA
GetStringTypeA
GetStringTypeW
FlushFileBuffers
GetCPInfo
GetOEMCP

user32

TranslateMessage
DispatchMessageA
FindWindowA
LoadCursorA
RegisterClassA
GetMessageA
LoadImageA
GetSysColor
GetClientRect
CreateDialogParamA
MoveWindow
EndDialog
SetCursor
CreateWindowExA
UpdateWindow
TrackPopupMenu
ShowScrollBar
SendDlgItemMessageA
MessageBeep
SendMessageA
MessageBoxA
PostMessageA
SetTimer
CheckMenuItem
LoadIconA
DialogBoxParamA
KillTimer
PostQuitMessage
IsWindow
DestroyWindow
SetWindowLongA
GetWindowLongA
CallWindowProcA
InvalidateRect
SetCapture
DestroyIcon
SetForegroundWindow
CopyRect
InflateRect
DefWindowProcA
RegisterWindowMessageA
DrawIconEx
FillRect
SetRect
GetMenu
GetSubMenu
ModifyMenuA
LoadBitmapA
GetWindowTextA
SetWindowTextA
EnableWindow
GetWindowRect
GetSystemMetrics
SetWindowPos
ReleaseDC
BeginPaint
GetDC
DrawTextA
EndPaint
GetCursorPos
GetDlgItem
GetCapture
ShowWindow
ReleaseCapture
PtInRect
ScreenToClient

gdi32

GetStockObject
SetBkColor
SetTextColor
SetBkMode
CreateFontIndirectA
ExtTextOutA
SelectObject
TextOutA
CreateSolidBrush
GetTextMetricsA
MoveToEx
CreatePen
LineTo
BitBlt
CreateCompatibleDC
DeleteDC
GetClipBox
AddFontResourceA
DeleteObject

comdlg32

GetOpenFileNameA

advapi32

RegDeleteValueA
RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegDeleteKeyA
RegQueryValueExA
RegSetValueExA
RegOpenKeyA

shell32

Shell_NotifyIconA
SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteA

ole32

CoUninitialize
CoCreateInstance
CoInitialize

comctl32

InitCommonControlsEx

Sections

.text
Size: 536KB - Virtual size: 536KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 692KB - Virtual size: 692KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1a1ebcc022ceabd84016d17c95d0b580

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

comctl32

Sections

.text Size: 536KB - Virtual size: 536KB

.rdata Size: 692KB - Virtual size: 692KB

.data Size: 128KB - Virtual size: 128KB

.rsrc Size: 2.9MB - Virtual size: 2.9MB

Size: 12KB - Virtual size: 12KB

.text
Size: 536KB - Virtual size: 536KB

.rdata
Size: 692KB - Virtual size: 692KB

.data
Size: 128KB - Virtual size: 128KB

.rsrc
Size: 2.9MB - Virtual size: 2.9MB