ffee7837114db80c082893117aac456c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ffee7837114db80c082893117aac456c_JaffaCakes118
Size

116KB
MD5

ffee7837114db80c082893117aac456c
SHA1

146fa178173a4eace4b728e873046a26cc2c4a18
SHA256

485b82605bdd4fddb7241ddc5fb3fa178ac15d7298fa2182846a4e7ebadbd9a6
SHA512

b1252f075afa3db5d620edcf9ba2a3021180757c84b5659a734722f5b2aab70bdb90afd2d1fd542a004b844ba2468039d7969904586eccd192d38daaaf4fe412
SSDEEP

3072:NRqNhLJ2605R6rgnfjc53N0+ZyFL0SGH+4H:N0N051nfjU0QSGH+4H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ffee7837114db80c082893117aac456c_JaffaCakes118

Files

ffee7837114db80c082893117aac456c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b2ee6f563ef6d2ead78cc7003d216c62

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterWindowMessageA
TranslateMessage
LoadCursorA
UnregisterHotKey
CreateMenu
DeferWindowPos
BeginDeferWindowPos
MapDialogRect
LoadIconA
SetCapture
OffsetRect
EndDialog
CloseClipboard
SetForegroundWindow
SetFocus
RegisterClassExA
GetKeyNameTextA
GetWindowTextLengthA
GetClassInfoExA
CallWindowProcA
GetMessageA
GetCursorPos
GetFocus
AppendMenuA
SetClipboardData
DestroyWindow
SendMessageA
IsClipboardFormatAvailable
SendDlgItemMessageA
CheckRadioButton

dciman32

GetWindowRegionData
DCIOpenProvider
DCIEnum
DCICreatePrimary
DCIBeginAccess
WinWatchOpen

mscms

ConvertIndexToColorName
CreateColorTransformA
CreateDeviceLinkProfile
CreateMultiProfileTransform
CreateProfileFromLogColorSpaceA
DeleteColorTransform
GetColorProfileHeader
GetCountColorProfileElements
GetStandardColorSpaceProfileA
ConvertColorNameToIndex

msvcp60

??0_Winit@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHABV12@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??1Init@ios_base@std@@QAE@XZ

msvcrt

realloc
exit
fopen
fseek
fputs
free
fclose
atoi
malloc
__dllonexit
_onexit
_exit
_XcptFilter
_acmdln
__getmainargs
_initterm
__setusermatherr
_controlfp
_except_handler3
_adjust_fdiv
__p__fmode
__p__commode
fwrite
__set_app_type

kernel32

GetModuleHandleA
GetEnvironmentVariableA
SetTapePosition
SetFileAttributesA
CreateProcessA
GetStartupInfoA

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 508KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b2ee6f563ef6d2ead78cc7003d216c62

Headers

File Characteristics

Imports

user32

dciman32

mscms

msvcp60

msvcrt

kernel32

Sections

.text Size: 8KB - Virtual size: 5KB

.rdata Size: 40KB - Virtual size: 38KB

.data Size: 56KB - Virtual size: 508KB

.reloc Size: 8KB - Virtual size: 4KB

.text
Size: 8KB - Virtual size: 5KB

.rdata
Size: 40KB - Virtual size: 38KB

.data
Size: 56KB - Virtual size: 508KB

.reloc
Size: 8KB - Virtual size: 4KB