fae88c8201e570953ccc2f33f040ef46_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fae88c8201e570953ccc2f33f040ef46_JaffaCakes118
Size

487KB
MD5

fae88c8201e570953ccc2f33f040ef46
SHA1

257852889cfdc28714fba0c0b6c29cbb3ce6cff3
SHA256

4f6c8002ce4503f777738abe90970473609eba9c84d39e694d9f44ad6e7e9645
SHA512

056590126d28482088f0be6b56f9a9428fcf66ab9f95a0354105323f24b40d6e22f00d1a278622ca25b8a230e8d847e922466770ac5e500d4c8c77e391462094
SSDEEP

12288:EW8TvWWtWsdwhHG3IuI+czkP/DiirRE/zro8jIQqzxhX:EHLWWtWs2mYF+czkTnrKzro8jlah

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fae88c8201e570953ccc2f33f040ef46_JaffaCakes118

Files

fae88c8201e570953ccc2f33f040ef46_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ee6fc0a1c68dc3cfee7bc0101c6c19b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateRectRgnIndirect
Polygon
SetICMMode
AbortPath
GetKerningPairs
CreateColorSpaceW
SetDIBits
CreateFontW
FillPath
CreateEllipticRgnIndirect
SetPixelV
MaskBlt
Rectangle
GetViewportOrgEx
GetBitmapDimensionEx
SetEnhMetaFileBits
MoveToEx
GetMetaRgn
CreateCompatibleDC
LPtoDP
CreateBitmap
SetArcDirection
GetArcDirection
CreateColorSpaceA
OffsetWindowOrgEx

user32

GetComboBoxInfo
SetMenuInfo
DrawMenuBar
IsCharLowerW
CreateDialogParamA
RegisterClassA
CharUpperBuffW
GetUserObjectInformationA
RegisterClassExA
CreateWindowExA
EnumDesktopsW
AppendMenuW
CreateIconIndirect
EndPaint
GetMessageExtraInfo
UpdateWindow
ToAsciiEx

comctl32

InitCommonControlsEx

kernel32

GlobalHandle
GetCurrentThread
HeapAlloc
GetVersionExA
FreeEnvironmentStringsA
WideCharToMultiByte
SetEnvironmentVariableA
GetEnvironmentStringsW
GetModuleFileNameA
GetOEMCP
CloseHandle
TerminateProcess
SetLastError
TlsGetValue
SetStdHandle
GetEnvironmentStrings
RtlUnwind
GetStartupInfoA
EnumSystemLocalesA
GetLocaleInfoW
GetSystemInfo
SetHandleCount
HeapSize
GetCurrentProcess
SetFilePointer
SetCurrentDirectoryW
GetStringTypeA
QueryPerformanceCounter
VirtualAlloc
LoadLibraryA
EnterCriticalSection
FindFirstFileExW
LCMapStringA
VirtualQuery
VirtualFree
HeapCreate
GetTimeFormatA
GetLocaleInfoA
GetUserDefaultLCID
IsValidCodePage
InitializeCriticalSection
FlushFileBuffers
CompareStringA
HeapReAlloc
SetFileAttributesW
GetStringTypeW
ReadFile
GetLastError
GetCurrentThreadId
InterlockedExchange
GetStdHandle
GlobalSize
GetDateFormatA
TlsSetValue
FreeEnvironmentStringsW
GetTimeZoneInformation
CreateThread
IsBadWritePtr
GetModuleHandleA
CompareStringW
OpenMutexA
VirtualProtect
LCMapStringW
GetTickCount
IsValidLocale
ExitProcess
UnhandledExceptionFilter
GetCommandLineA
CreateMutexA
LeaveCriticalSection
DeleteCriticalSection
GetCurrentProcessId
TlsFree
GetFileType
CreateProcessW
HeapDestroy
TlsAlloc
GetCPInfo
lstrlenA
HeapFree
WriteFile
GetSystemTimeAsFileTime
MultiByteToWideChar
GetACP
GetProcAddress

Sections

.text
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee6fc0a1c68dc3cfee7bc0101c6c19b5

Headers

File Characteristics

Imports

gdi32

user32

comctl32

kernel32

Sections

.text Size: 152KB - Virtual size: 151KB

.rdata Size: 8KB - Virtual size: 13KB

.data Size: 313KB - Virtual size: 313KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 152KB - Virtual size: 151KB

.rdata
Size: 8KB - Virtual size: 13KB

.data
Size: 313KB - Virtual size: 313KB

.rsrc
Size: 12KB - Virtual size: 11KB