fc40a53ba2eb75b1b612dd9e82278f1e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fc40a53ba2eb75b1b612dd9e82278f1e_JaffaCakes118
Size

200KB
MD5

fc40a53ba2eb75b1b612dd9e82278f1e
SHA1

e4c8bee7795d4b071a587dd8a0e409266797fdad
SHA256

7e5966d6652ab421ea9b7ebcd5ff784ce6ae6c2d19f05ac2ddc100a077e310da
SHA512

e6dfa10f9668a4cacdc8862755b43213ddad882cc9a77c62e2e06328825bf6bb557e7506c02a529c2639267284a22a8afc30b09ae1c3e87faab13164bfb35e69
SSDEEP

3072:npWublibF0drug5A1d6q97Kbf3pnD1GeJ07nEloeu1o8zTZ9i9XnBiZCyL2:pWTFOno197Kl5Gu074oS8HkXBiZC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc40a53ba2eb75b1b612dd9e82278f1e_JaffaCakes118

Files

fc40a53ba2eb75b1b612dd9e82278f1e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

61201595bdc901d3e74f253afa5457ae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFullPathNameW
lstrlenW
RemoveDirectoryW
SetComputerNameA
CreateMailslotW
IsBadStringPtrA
OpenSemaphoreA
GetCurrentThreadId
GetExpandedNameA
MulDiv
GetEnvironmentStringsW
Sleep
LocalFree
CreateNamedPipeA
lstrcpynA
GlobalDeleteAtom
FileTimeToLocalFileTime
GetComputerNameA
GetTimeFormatW
GetSystemDirectoryW
GetVersion
CreateDirectoryA
GetExitCodeProcess
lstrcmpi
SetComputerNameW
CreateFileA
ReadDirectoryChangesW
GetUserDefaultLCID
GetLongPathNameA
GetFileSize
SuspendThread
DisconnectNamedPipe
EndUpdateResourceW
CreateMailslotA
TlsAlloc
MultiByteToWideChar
GetProcAddress
GetHandleInformation
Beep
GetModuleHandleA
ExpandEnvironmentStringsA
GetCommandLineW
GetThreadPriority
GetUserDefaultLangID
lstrcpyn
EnumCalendarInfoW
OpenMutexA

user32

LoadBitmapW
DrawTextA
GetWindowTextLengthW
CreateAcceleratorTableA
PeekMessageW
GetDC
CreateDesktopA
CreatePopupMenu
GetMenuItemInfoW
GetClassInfoExW
CreateIcon
LoadMenuIndirectW
CreateDialogIndirectParamW
UnregisterClassW
SendMessageW
SendDlgItemMessageA
WinHelpW
GetMessageA
CreateWindowExW
DestroyCursor
ClientToScreen
wsprintfA
GetKeyboardType
CopyIcon
GetCaretPos

gdi32

CreateMetaFileA
PolyPolyline
CreateEnhMetaFileW
PolyBezierTo
GetTextFaceW
GetDCBrushColor
GetEnhMetaFileBits
CreatePolygonRgn
GetPixel
GetCurrentObject
SwapBuffers
UpdateColors
EndPage

advapi32

RegDeleteKeyW
RegReplaceKeyW
RegDeleteValueW
RegCreateKeyW
RegRestoreKeyA

comctl32

ImageList_DrawEx
ImageList_Draw
DestroyPropertySheetPage
CreateStatusWindowA
ImageList_Add

ole32

CoGetMalloc
GetClassFile
CoGetInstanceFromFile
StringFromCLSID
CoInitializeEx

setupapi

SetupDiClassNameFromGuidExA
CM_Query_And_Remove_SubTree_ExA
CM_Get_Class_Key_Name_ExW
SetupTerminateFileLog
CM_Add_Range
pSetupStringTableAddString
SetupDiInstallClassW
SetupUninstallOEMInfA
SetupDiInstallClassExW
SetupDiBuildClassInfoListExW

winmm

midiStreamPause
mciDriverYield
midiOutReset
midiInGetNumDevs
wid32Message

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.obGGAK
Size: 1KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.DrfvwF
Size: 3KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.piHM
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsj
Size: 512B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fKOd
Size: 1024B - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 163KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61201595bdc901d3e74f253afa5457ae

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comctl32

ole32

setupapi

winmm

Sections

.text Size: 12KB - Virtual size: 11KB

.obGGAK Size: 1KB - Virtual size: 17KB

.DrfvwF Size: 3KB - Virtual size: 30KB

.piHM Size: 2KB - Virtual size: 2KB

.data Size: 14KB - Virtual size: 13KB

.rsj Size: 512B - Virtual size: 7KB

.fKOd Size: 1024B - Virtual size: 277KB

.rsrc Size: 163KB - Virtual size: 162KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 12KB - Virtual size: 11KB

.obGGAK
Size: 1KB - Virtual size: 17KB

.DrfvwF
Size: 3KB - Virtual size: 30KB

.piHM
Size: 2KB - Virtual size: 2KB

.data
Size: 14KB - Virtual size: 13KB

.rsj
Size: 512B - Virtual size: 7KB

.fKOd
Size: 1024B - Virtual size: 277KB

.rsrc
Size: 163KB - Virtual size: 162KB

.reloc
Size: 1KB - Virtual size: 1KB