066e340b60c764baab9ecb2918fd32af_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

066e340b60c764baab9ecb2918fd32af_JaffaCakes118
Size

275KB
MD5

066e340b60c764baab9ecb2918fd32af
SHA1

1a8751b1622dda3873dcba7c0d42a56c072ab78a
SHA256

1ef7d0d32ab42f9073ea49dd49d3ee3c0b2f4a71d6be3e5837df6291449a40bc
SHA512

c4c01213a98439eb1934db9adbf85f0c30a035a04cc22993d06c0aed39e51d5716fecfdecde567cbcfb2755540bce1b65150638fd4c5de7ac32ab82c5a7617cc
SSDEEP

6144:AG+nyr2m06nM9N3QoLpKpTrf3xYYKrgu00jj/ZYMr:AG+yr2m5AQqKp/qYKrgu00XFr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
066e340b60c764baab9ecb2918fd32af_JaffaCakes118

Files

066e340b60c764baab9ecb2918fd32af_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1fd9f26a92ff1c917490e27487805455

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerFindFileA
GetFileVersionInfoSizeA
VerInstallFileA
GetFileVersionInfoA
VerFindFileA
VerQueryValueA
VerFindFileA
VerInstallFileA
VerFindFileA
GetFileVersionInfoSizeA

gdi32

LineTo
GetDCOrgEx
SetBkColor
CreateBitmap
SelectPalette
CreateFontIndirectA
SetPixel
GetBitmapBits
BitBlt
SetBkColor
GetPaletteEntries
CreatePenIndirect
SetTextColor
GetDIBColorTable
SelectPalette
CreateBrushIndirect
BitBlt
GetObjectA
CreateBitmap

msvcrt

sqrt
wcstol
fabs
wcsncmp
memmove
atan
srand
cos
tolower
log10

comdlg32

GetOpenFileNameA

shell32

SHGetFolderPathA
SHGetDiskFreeSpaceA
SHGetFileInfoA
SHFileOperationA
SHGetSpecialFolderLocation

comctl32

ImageList_Add
ImageList_GetBkColor
ImageList_Read
ImageList_Write
ImageList_DragShowNolock
ImageList_Draw
ImageList_GetBkColor
ImageList_Remove
ImageList_Destroy
ImageList_DrawEx

kernel32

lstrcatA
lstrlenA
LoadLibraryA
ExitProcess
GetProcAddress
IsBadReadPtr
VirtualAlloc
GetModuleHandleA
ExitThread
GetACP
GetLastError
GetCommandLineW
LoadLibraryExA
GetVersionExA

advapi32

RegEnumKeyExA
RegQueryValueExA

oleaut32

SysAllocStringLen
SafeArrayPtrOfIndex
OleLoadPicture
VariantCopyInd
SafeArrayUnaccessData

ole32

CoCreateGuid
CLSIDFromString
OleRun
CoGetObjectContext
CoCreateInstanceEx
CLSIDFromProgID

shlwapi

SHDeleteKeyA
SHEnumValueA
SHStrDupA
SHQueryInfoKeyA
SHDeleteValueA
PathFileExistsA
PathIsDirectoryA
SHGetValueA
PathGetCharTypeA
PathIsContentTypeA

user32

ShowOwnedPopups
IsZoomed
DefFrameProcA

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data9
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data3
Size: 1024B - Virtual size: 681B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data7
Size: 223KB - Virtual size: 223KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data8
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 996B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1fd9f26a92ff1c917490e27487805455

Headers

File Characteristics

Imports

version

gdi32

msvcrt

comdlg32

shell32

comctl32

kernel32

advapi32

oleaut32

ole32

shlwapi

user32

Sections

.text Size: 42KB - Virtual size: 41KB

.data Size: 1024B - Virtual size: 928B

.data9 Size: 1KB - Virtual size: 1KB

.data3 Size: 1024B - Virtual size: 681B

.data7 Size: 223KB - Virtual size: 223KB

.data8 Size: 4KB - Virtual size: 3KB

.rsrc Size: 1024B - Virtual size: 996B

.text
Size: 42KB - Virtual size: 41KB

.data
Size: 1024B - Virtual size: 928B

.data9
Size: 1KB - Virtual size: 1KB

.data3
Size: 1024B - Virtual size: 681B

.data7
Size: 223KB - Virtual size: 223KB

.data8
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 1024B - Virtual size: 996B