078d4fd069e55f9dbdac8b63a1a05ef0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

078d4fd069e55f9dbdac8b63a1a05ef0_JaffaCakes118
Size

796KB
MD5

078d4fd069e55f9dbdac8b63a1a05ef0
SHA1

9acdec60ae519c24c782d8bf9effe7af79967e33
SHA256

42139873e3812330049b884d7fb77b54ebbb324ab1930b6847a095439ae321e7
SHA512

ee173cedae6b31bbc83405d30fdad98039d6233cb8d9b2ac5ad5ce2888f8cab96f251e15ee0af2ef9e2276d5936025b2f3f891180ad49f165f8af4961a1cb895
SSDEEP

24576:NPJaz+g3sLBBWCQFzSzAtwCQaSPbNQqjry:NBM+gOBxQpoPbmq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
078d4fd069e55f9dbdac8b63a1a05ef0_JaffaCakes118

Files

078d4fd069e55f9dbdac8b63a1a05ef0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

65068ae9d137133d68a232ab029a9461

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\edkrs\tftxewvvg\wee.pdb

Imports

gdi32

PolyDraw
CreateICA
GetCurrentObject
SetColorAdjustment
SetWindowOrgEx
CreateFontIndirectA
RealizePalette
SetPolyFillMode
GetBitmapDimensionEx
DeleteObject
GetGlyphOutlineA
GetTextCharacterExtra
GetDCOrgEx
GetClipRgn
EnumMetaFile
CreateDIBPatternBrushPt
CreateDIBitmap
SetBitmapBits
CreatePen
PlayMetaFileRecord
GetObjectType
SelectClipPath
LPtoDP
UpdateColors
SetBitmapDimensionEx
CopyMetaFileA
FillRgn
GetWindowOrgEx
GetTextExtentPoint32A
GetDeviceCaps
CreatePenIndirect
RectVisible
CreateBrushIndirect
SetMapperFlags
ArcTo
OffsetWindowOrgEx

advapi32

FreeSid
RegCreateKeyExA
SetSecurityDescriptorDacl
RegOpenKeyExA
GetSidSubAuthorityCount
RegEnumValueA

shell32

DragAcceptFiles
SHGetMalloc
ShellExecuteExA
SHGetFileInfoA
DragQueryFileA
DragFinish
ShellExecuteA

kernel32

ReadFile
LoadLibraryA
IsDebuggerPresent
TlsSetValue
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
WriteConsoleA
WideCharToMultiByte
GetModuleFileNameA
LocalFree
InterlockedDecrement
LCMapStringW
LeaveCriticalSection
VirtualFree
LCMapStringA
GetModuleFileNameW
InterlockedExchange
SetLastError
CreateFileA
SetEnvironmentVariableA
GetConsoleCP
IsValidCodePage
TlsFree
SetFilePointer
SetUnhandledExceptionFilter
EnterCriticalSection
HeapCreate
RaiseException
GetStringTypeW
VirtualQuery
GetTickCount
MultiByteToWideChar
TlsGetValue
GetCPInfo
GetCommandLineW
InitializeCriticalSectionAndSpinCount
CloseHandle
GetTimeFormatA
InterlockedIncrement
WaitForSingleObject
UnhandledExceptionFilter
GetCurrentProcess
GetProcAddress
Sleep
WriteConsoleW
GetTimeZoneInformation
CompareStringA
HeapReAlloc
HeapFree
SetHandleCount
ExitProcess
SetStdHandle
GetStartupInfoW
LoadLibraryW
GetCurrentThreadId
WriteFile
CreateMutexW
HeapSize
TlsAlloc
GetOEMCP
TerminateProcess
GetStdHandle
GetConsoleOutputCP
GetCurrentProcessId
VirtualAlloc
QueryPerformanceCounter
GetEnvironmentStringsW
GetLastError
GetStringTypeA
GetConsoleMode
DeleteCriticalSection
GetModuleHandleA
GetLocaleInfoA
FlushFileBuffers
CompareStringW
RtlUnwind
GetModuleHandleW
GetACP
GetStartupInfoA
GetFileType
HeapAlloc
GetDateFormatA

comdlg32

GetFileTitleA
CommDlgExtendedError

comctl32

InitCommonControlsEx
DestroyPropertySheetPage
PropertySheetW

ole32

OleInitialize
CreateStreamOnHGlobal
OleGetClipboard

user32

DrawFrameControl
WaitForInputIdle
LoadStringW
GetMenu
GetSubMenu
SetWindowPos
DeferWindowPos
CreateWindowExW
DefWindowProcW
CallWindowProcW
GetWindow
GetClassInfoW
GetParent
GetKeyState
ReleaseDC
GetWindowTextW
SetFocus
RegisterClassW
IsWindowVisible
GetWindowPlacement
GetNextDlgGroupItem
MessageBoxW
ShowWindow
InsertMenuW
IsZoomed
LoadIconW
SetMenuItemInfoW
CheckMenuItem
ClientToScreen
GetCapture
LoadCursorW
UnregisterClassA
IsWindowEnabled
SetMenu
DestroyWindow
GetDCEx
LoadBitmapW
RegisterClassExW
CreateMenu
EnableMenuItem

Sections

.text
Size: 108KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 480KB - Virtual size: 477KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

65068ae9d137133d68a232ab029a9461

Headers

File Characteristics

PDB Paths

Imports

gdi32

advapi32

shell32

kernel32

comdlg32

comctl32

ole32

user32

Sections

.text Size: 108KB - Virtual size: 106KB

.rdata Size: 480KB - Virtual size: 477KB

.data Size: 108KB - Virtual size: 105KB

.rsrc Size: 96KB - Virtual size: 94KB

.text
Size: 108KB - Virtual size: 106KB

.rdata
Size: 480KB - Virtual size: 477KB

.data
Size: 108KB - Virtual size: 105KB

.rsrc
Size: 96KB - Virtual size: 94KB