086ded6979e2f43a1bcd78d2fe298f94_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

086ded6979e2f43a1bcd78d2fe298f94_JaffaCakes118
Size

185KB
MD5

086ded6979e2f43a1bcd78d2fe298f94
SHA1

1248473d4e33ce5fee7c65c7f6cf2f60f155f5ae
SHA256

61f6df329dd803e18913d4a928357df680f52d6d2890c3cd65537dff8219153e
SHA512

c94034f502d14f5c1e5d88c2693a728f41285f092e5716002a6e20df043002b4f5ce70f00ff4db078e60f0803d1ad50ff739fe39acdb0dfc859df5247bd8ef29
SSDEEP

3072:lQ+P+CmokXLW+YYl+Rt9s9eckZwZVDyLp4avT0xsIu:lQ+WCmtWK0t69Zk6ZRyLp4a74s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
086ded6979e2f43a1bcd78d2fe298f94_JaffaCakes118

Files

086ded6979e2f43a1bcd78d2fe298f94_JaffaCakes118
.exe windows:4 windows x86 arch:x86

841fb5e54b9033b8ea7efcaf29199d9c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetClassObject
CoCreateInstance
OleUninitialize
OleFlushClipboard
CLSIDFromProgID
CoFreeUnusedLibraries
CoRetireServer
OleInitialize
CoInitialize
CoUninitialize
CoRevokeClassObject
CoRegisterMessageFilter
OleIsCurrentClipboard
CoTaskMemAlloc
CoTaskMemFree
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CLSIDFromString

msimg32

AlphaBlend

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA

gdi32

CreateDIBSection
SetMiterLimit
ModifyWorldTransform
PatBlt
GetStockObject
SetROP2
EndDoc
OffsetRgn
GetObjectA
SelectClipRgn
CreatePatternBrush
GetClipBox
EndPath
CreateDCW
ResetDCW
SelectPalette
GetDIBColorTable
CreateICW
SaveDC
StartPage
CreateCompatibleDC
PolyBezierTo
CombineRgn
PolylineTo
SelectObject
CreatePalette
SelectClipPath
AbortDoc
ExtEscape
MoveToEx
CloseFigure
GetRegionData
SetBrushOrgEx
ExtCreatePen
SetStretchBltMode
StretchDIBits
CreateBrushIndirect
ExtSelectClipRgn
GetGraphicsMode
Escape
GetCurrentObject
GetRgnBox
GetViewportOrgEx
CreateCompatibleBitmap
CreateRectRgn
DeleteDC
SetWorldTransform
EndPage
IntersectClipRect
DeleteObject
FillPath
LineTo
BitBlt
Rectangle
CreateBitmap
CreatePolyPolygonRgn
EqualRgn
GetDeviceCaps
StartDocW
SetPolyFillMode
GetWorldTransform
SetGraphicsMode
SetDIBits
BeginPath
StrokePath
RestoreDC
StretchBlt
RealizePalette
PolyDraw

user32

CharNextW
GetSystemMetrics
GetWindowRect
GetClientRect
GetDC
ReleaseDC
SetWindowPos
GetMonitorInfoA
OffsetRect
MonitorFromPoint
DefWindowProcA
CreateWindowExA
RegisterClassA
ScrollWindowEx
GetActiveWindow
EnumDisplayMonitors
GetDesktopWindow
SetActiveWindow
DestroyWindow
MonitorFromWindow
LoadCursorA
LoadIconA
WindowFromDC
UnregisterClassA

shlwapi

PathRemoveFileSpecA
PathAppendA

kernel32

UnhandledExceptionFilter
TlsFree
InterlockedCompareExchange
GetThreadLocale
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
GetModuleFileNameA
GetDateFormatW
GetTimeFormatW
GetFileTime
CloseHandle
GetFileSize
GetEnvironmentVariableW
ReleaseMutex
GetCalendarInfoW
DeleteFileW
InterlockedExchange
GetThreadPriority
lstrcmpW
GlobalLock
GetDateFormatA
GetUserDefaultLangID
WideCharToMultiByte
GetTickCount
SetUnhandledExceptionFilter
SetCurrentDirectoryA
GetCurrentThread
CreateSemaphoreA
InterlockedIncrement
GetTimeFormatA
GetTempPathW
ReleaseSemaphore
SetThreadPriority
GlobalAlloc
MultiByteToWideChar
GetLocalTime
GetProcAddress
EnterCriticalSection
GetLastError
FindFirstFileA
GetModuleHandleA
TlsGetValue
GetCurrentProcessId
CreateFileA
EnumResourceNamesA
FindNextFileA
GetCurrentDirectoryA
GetSystemDefaultLCID
GetSystemDirectoryA
InitializeCriticalSection
FindClose
ExitProcess
IsDebuggerPresent
LoadLibraryA
GetCurrentProcess
DeleteCriticalSection
GlobalFree
GetCurrentThreadId
GlobalSize
CreateMutexA
GetWindowsDirectoryA
GetLocaleInfoA
lstrlenW
GetACP
QueryPerformanceCounter
GlobalUnlock
LocalAlloc
Sleep
GetVersionExA
GetSystemInfo
GetProfileStringW
WaitForSingleObject
LeaveCriticalSection
FreeLibrary
ReadFile
TlsSetValue
TerminateProcess
RaiseException

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

841fb5e54b9033b8ea7efcaf29199d9c

Headers

File Characteristics

Imports

ole32

msimg32

advapi32

gdi32

user32

shlwapi

kernel32

Sections

.text Size: 102KB - Virtual size: 101KB

.rdata Size: 5KB - Virtual size: 5KB

.bss Size: 75KB - Virtual size: 75KB

.edata Size: 1024B - Virtual size: 368KB

.text
Size: 102KB - Virtual size: 101KB

.rdata
Size: 5KB - Virtual size: 5KB

.bss
Size: 75KB - Virtual size: 75KB

.edata
Size: 1024B - Virtual size: 368KB