ff297cbf92a3d5e6dac9b41bbde90c50_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ff297cbf92a3d5e6dac9b41bbde90c50_JaffaCakes118
Size

1.1MB
MD5

ff297cbf92a3d5e6dac9b41bbde90c50
SHA1

a97554862ebc52284a4f86252952746538fa1319
SHA256

6d59965a472844de23b73167e148a439149b013945cdc6e37531b1807bd393db
SHA512

2a40c42bf2653247e24f9bf9d4b0a6bfa8e94a502d9611b8f1feb54a42fa168551f53c25d54db07643ed295fddb61c7355646ffcb9ccba77532c3a5a7066f6c7
SSDEEP

24576:KzJgPS9R9U7gtrszWnv+zxcsbglEkT35eXe5ZK2u0Vn:u+qtWt4+zxLbg20h5ZKwh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff297cbf92a3d5e6dac9b41bbde90c50_JaffaCakes118

Files

ff297cbf92a3d5e6dac9b41bbde90c50_JaffaCakes118
.exe windows:4 windows x86 arch:x86

660067ad5be2fb800fbbed0f1aec2631

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
InitializeCriticalSection
VirtualFree
VirtualAlloc
LocalFree
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
lstrcpynA
GetStartupInfoA
GetModuleHandleA
GetModuleFileNameA
FindFirstFileA
ExitProcess
WriteFile
UnhandledExceptionFilter
SetFilePointer
ReadFile
RaiseException
GetStdHandle
GetFileSize
CreateFileA
CloseHandle
TlsGetValue
WriteFile
WaitForSingleObject
VirtualQuery
VirtualAlloc
Sleep
SizeofResource
SetThreadLocale
SetFilePointer
SetEvent
SetErrorMode
ResetEvent
LockResource
InitializeCriticalSection
GlobalLock
GlobalAddAtomA
GetVersionExA
GetThreadLocale
GetSystemInfo
GetStringTypeExA
GetModuleFileNameA
GetLocalTime
GetDiskFreeSpaceA
GetDateFormatA
GetCurrentThreadId
GetCPInfo
FreeResource
FreeLibrary
FindResourceA
EnumCalendarInfoA
DeleteCriticalSection
CompareStringA

user32

GetKeyboardType
MessageBoxA
WindowFromPoint
UnregisterClassA
UnhookWindowsHookEx
TranslateMDISysAccel
TrackPopupMenu
ShowWindow
ShowScrollBar
ShowOwnedPopups
ShowCursor
SetWindowsHookExA
SetWindowPos
SetWindowPlacement
SetTimer
SetScrollPos
SetMenuItemInfoA
SetMenu
SetFocus
SetCursor
SetClassLongA
SetActiveWindow
SendMessageA
RemovePropA
RemoveMenu
ReleaseDC
RegisterWindowMessageA
RegisterClassA
RedrawWindow
PostMessageA
OemToCharA
MessageBoxA
MapWindowPoints
MapVirtualKeyA
LoadCursorA
IsWindowVisible
IsWindow
IsRectEmpty
IsIconic
IsDialogMessageA
IsChild
IntersectRect
InsertMenuItemA
GetWindowRect
GetWindowPlacement
GetWindowLongA
GetWindowDC
GetSystemMenu
GetSysColor
GetScrollPos
GetPropA
GetParent
GetWindow
GetMenuStringA
GetMenuState
GetMenuItemInfoA
GetMenuItemID
GetMenuItemCount
GetLastActivePopup
GetKeyboardState
GetKeyboardLayoutList
GetKeyboardLayout
GetKeyState
GetKeyNameTextA
GetIconInfo
GetForegroundWindow
GetFocus
GetDC
GetCursor
GetClassNameA
FrameRect
FindWindowA
EqualRect
EnumWindows
EnumThreadWindows
EndPaint
EnableScrollBar
EnableMenuItem
DrawTextA
DrawMenuBar
DrawIconEx
DrawIcon
DrawFrameControl
DrawEdge
DestroyMenu
DestroyCursor
CreateWindowExA
CreatePopupMenu
CreateIcon
ClientToScreen
CheckMenuItem
CallWindowProcA
CallNextHookEx
BeginPaint
CharNextA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegQueryValueExA
RegCloseKey

oleaut32

SysReAllocStringLen
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayGetElement
SafeArrayGetUBound
SafeArrayGetLBound
VariantCopy
VariantInit

gdi32

UnrealizeObject
StretchBlt
SetViewportOrgEx
SetTextColor
SetStretchBltMode
SetROP2
SetPixel
SetDIBColorTable
SetBkMode
SetBkColor
Polyline
MoveToEx
MaskBlt
IntersectClipRect
GetTextMetricsA
GetTextExtentPoint32A
GetStockObject
GetPixel
GetPaletteEntries
GetDCOrgEx
GetCurrentPositionEx
GetBrushOrgEx
GetBitmapBits
ExcludeClipRect
DeleteObject
CreateSolidBrush
CreatePenIndirect
CreatePalette
CreateHalftonePalette
CreateFontIndirectA
CreateDIBSection
CreateCompatibleBitmap
CreateBrushIndirect
CreateBitmap
BitBlt

comctl32

ImageList_SetIconSize
ImageList_GetIconSize
ImageList_Write
ImageList_Read
ImageList_GetDragImage
ImageList_DragShowNolock
ImageList_DragLeave
ImageList_EndDrag
ImageList_BeginDrag
ImageList_GetBkColor
ImageList_ReplaceIcon
ImageList_Add
ImageList_GetImageCount
ImageList_Create

Sections

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 1KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

660067ad5be2fb800fbbed0f1aec2631

Headers

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

gdi32

comctl32

Sections

.rsrc Size: 23KB - Virtual size: 23KB

DATA Size: 1.0MB - Virtual size: 1.0MB

.rdata Size: 512B - Virtual size: 512B

CODE Size: 1KB - Virtual size: 1.8MB

.idata Size: 6KB - Virtual size: 6KB

.rsrc
Size: 23KB - Virtual size: 23KB

DATA
Size: 1.0MB - Virtual size: 1.0MB

.rdata
Size: 512B - Virtual size: 512B

CODE
Size: 1KB - Virtual size: 1.8MB

.idata
Size: 6KB - Virtual size: 6KB