fef404000cf6cc4bddde5fda61692dea_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fef404000cf6cc4bddde5fda61692dea_JaffaCakes118
Size

385KB
MD5

fef404000cf6cc4bddde5fda61692dea
SHA1

595d081886dd63d64cace676fc2c4013bf34d3e9
SHA256

e027f0d2eca1fd8f66721f5134df95e118ee701a5b94126718d73cc74a942a1d
SHA512

6af6fda067b0890cbaf84b5a0ee8e9f0c65febc8cc3f0c1c4f0884fbdce5d026f9aaf7120b5e672f194c7b6f1e94d05b1c36d5ed84078d8970cf39ccb23548e3
SSDEEP

12288:b7ls+GvwBxu+3nqOLnRh/QPURJi3mJqT:b7m+GvwBA+trRh/QPU62JqT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fef404000cf6cc4bddde5fda61692dea_JaffaCakes118

Files

fef404000cf6cc4bddde5fda61692dea_JaffaCakes118
.exe windows:1 windows x86 arch:x86

44fd9098e4c1b60814e866ec55cd759a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetTempPathW
lstrcpynW
GetCurrentProcess
CloseHandle
GetFileSize
GetExitCodeThread
CreateFileW
HeapSetInformation
GetStartupInfoW
CreateDirectoryW
FileTimeToSystemTime
LocalAlloc
lstrcmpW
LoadLibraryA
VirtualFree
GetSystemTimeAsFileTime
HeapCreate
InterlockedIncrement
MultiByteToWideChar
FileTimeToLocalFileTime
GetNumberFormatW
VirtualAlloc
HeapQueryInformation
GetThreadLocale
GetFileTime
GlobalAlloc
GlobalReAlloc
SetErrorMode
GetLastError
LocalFree

imm32

ImmAssociateContext
ImmSetCompositionWindow
ImmGetCompositionStringW

ole32

CoInitialize
ReleaseStgMedium
CLSIDFromString
CoMarshalInterThreadInterfaceInStream
PropVariantClear
CoGetInterfaceAndReleaseStream
WriteFmtUserTypeStg
CoCreateInstance
OleGetClipboard

advapi32

RegCreateKeyExW
RegQueryValueExW
RegSetValueExW
RegOpenKeyW
RegOpenKeyExA
RegCloseKey

gdiplus

GdiplusStartup
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipCreateBitmapFromHBITMAP
GdipFree
GdipGetPropertySize
GdipAlloc
GdipCreateBitmapFromFileICM

gdi32

GetPixel
UnrealizeObject
SetBkMode
Polyline
ResizePalette
PolyBezier
GetTextExtentPoint32W
MoveToEx
CreateBitmap
PtVisible
GetObjectW
Escape
CreatePen
RealizePalette
SetTextColor
CreateFontIndirectW
SetDIBColorTable
PlayMetaFile
Polygon
ExtFloodFill
GetDIBits
SetPixel
GetPaletteEntries
CreatePalette
GetCurrentObject
SetBrushOrgEx
StretchDIBits
SetBkColor
SelectPalette
GetBkMode
SetPaletteEntries
CreateRectRgnIndirect
SaveDC
DeleteDC
Ellipse
CreateCompatibleDC

user32

EnableScrollBar
SystemParametersInfoW
ReleaseDC
GetParent
UnionRect
WindowFromPoint
ReleaseCapture
EqualRect
WinHelpW
ShowCaret
GetFocus
GetClientRect
MessageBeep
FrameRect
GetDesktopWindow
wvsprintfW
SetCaretPos
GetSystemMenu
MsgWaitForMultipleObjects
LoadBitmapW
LoadCursorW
GetCapture
CheckDlgButton
EndPaint
BeginPaint
LoadMenuW
IsWindow
ScreenToClient
GetSubMenu
FillRect
GetKeyState
GetWindow
SetWindowLongW
TabbedTextOutW
ShowCursor
SetDlgItemInt
DestroyIcon
GetCursorPos
UpdateWindow
DestroyWindow
GetMenu

shell32

ShellAboutW

msvcrt

exit
_wcsicmp
_cexit
_XcptFilter
__setusermatherr
__wargv
__wgetmainargs
_except_handler3
wcscat
wcstok
__p__fmode
_onexit
_beginthreadex
wcscmp
__p__commode
_controlfp

comdlg32

GetOpenFileNameW

Sections

.text
Size: 182KB - Virtual size: 182KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 197KB - Virtual size: 828KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44fd9098e4c1b60814e866ec55cd759a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

imm32

ole32

advapi32

gdiplus

gdi32

user32

shell32

msvcrt

comdlg32

Sections

.text Size: 182KB - Virtual size: 182KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 197KB - Virtual size: 828KB

.text
Size: 182KB - Virtual size: 182KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 197KB - Virtual size: 828KB