09cf86fa5215a49dcf75f144d193bd7d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

09cf86fa5215a49dcf75f144d193bd7d_JaffaCakes118
Size

324KB
MD5

09cf86fa5215a49dcf75f144d193bd7d
SHA1

10fea65fc48a6e52f70b6d93c21a268779d73e51
SHA256

e05bf051ba55485962410d70a91d1a94fedb979dc70711742dccf7dbddf3e7d3
SHA512

fb38739fde0f59cdc4328d98146bca244c470a456478b24ed2eda1b222fa07566a9db870c9930faa0b746f33588c6402a0e680f65e76b953523963c56cfd13c8
SSDEEP

6144:Alb/u3ERfFAuB0aVhgBABslbq6JLrfqVGi3Gilo3bc/V:8zKEhFJme7BsE6RqVGi2ilgc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09cf86fa5215a49dcf75f144d193bd7d_JaffaCakes118

Files

09cf86fa5215a49dcf75f144d193bd7d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e01dc2270ed874d9227d54c271050485

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord1576

comctl32

_TrackMouseEvent
ImageList_GetImageCount
ImageList_AddMasked
InitCommonControlsEx

ole32

CoRevokeClassObject
CoCreateInstance
StgOpenStorageOnILockBytes
CLSIDFromString
CoFreeUnusedLibraries
CoGetClassObject
CLSIDFromProgID

oleaut32

LoadTypeLi

comdlg32

ChooseFontA
GetFileTitleA
PrintDlgA
GetSaveFileNameA

advapi32

GetUserNameA
OpenThreadToken
RegQueryValueExA
RegCreateKeyExA
RegEnumKeyExA
FreeSid
RegOpenKeyA
CopySid
RegOpenKeyExA
RegEnumValueA
GetLengthSid
RegDeleteKeyA
SetSecurityDescriptorDacl
ControlService
AllocateAndInitializeSid
OpenProcessToken
CreateServiceA
RegDeleteValueA
InitializeSecurityDescriptor
SetServiceStatus
GetTokenInformation
OpenSCManagerA
RegCloseKey
DeleteService

kernel32

FreeEnvironmentStringsW
SetFilePointer
InterlockedDecrement
WriteFile
GetModuleFileNameW
CreateFileA
Sleep
GetProcessHeap
GetTickCount
GetTimeFormatA
ReadFile
GetCPInfo
GetConsoleMode
MultiByteToWideChar
GetProcAddress
GetModuleHandleA
CreateMutexW
VirtualAlloc
SetStdHandle
GetCommandLineA
LCMapStringW
FreeEnvironmentStringsA
GetStartupInfoW
GetOEMCP
GetModuleFileNameA
CompareStringW
InterlockedExchange
FlushFileBuffers
HeapSize
HeapCreate
WriteConsoleA
RaiseException
GetCommandLineW
VirtualQuery
SetHandleCount
GetCurrentProcess
GetModuleHandleW
TerminateProcess
TlsFree
SetEnvironmentVariableA
LCMapStringA
TlsGetValue
InterlockedIncrement
GetDateFormatA
GetFileType
SetUnhandledExceptionFilter
ExitProcess
InitializeCriticalSection
HeapDestroy
GetConsoleCP
GetStartupInfoA
HeapReAlloc
LoadLibraryW
WideCharToMultiByte
CompareStringA
GetEnvironmentStringsW
GetCurrentProcessId
EnterCriticalSection
GetACP
GetConsoleOutputCP
CloseHandle
GetStringTypeA
LoadLibraryA
WriteConsoleW
GetStringTypeW
VirtualFree
RtlUnwind
GetSystemTimeAsFileTime
TlsSetValue
UnhandledExceptionFilter
DeleteCriticalSection
SetLastError
GetStdHandle
HeapFree
HeapAlloc
IsDebuggerPresent
LeaveCriticalSection
GetCurrentThreadId
GetVersionExA
GetTimeZoneInformation
GetLocaleInfoA
IsValidCodePage
GetLastError
QueryPerformanceCounter
TlsAlloc
GetEnvironmentStrings

user32

AdjustWindowRectEx
DestroyIcon
GetLastActivePopup
IsWindowEnabled
EqualRect
GetClassNameW
SetDlgItemTextW
LoadIconW
MapWindowPoints
DestroyAcceleratorTable
DefWindowProcW
ReleaseCapture
RegisterClassExW
LoadBitmapW
CopyAcceleratorTableW
LoadImageW
TranslateMessage
SetCursor
PtInRect
GetDlgCtrlID
DestroyWindow
MessageBoxW
RegisterClassW
LoadAcceleratorsW
ShowWindow
UpdateWindow
SetCapture
CreateWindowExW
UnregisterClassA
SetRect
CopyRect
SetParent
InvalidateRgn

Sections

.text
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e01dc2270ed874d9227d54c271050485

Headers

File Characteristics

Imports

mfc42

comctl32

ole32

oleaut32

comdlg32

advapi32

kernel32

user32

Sections

.text Size: 100KB - Virtual size: 96KB

.rdata Size: 108KB - Virtual size: 105KB

.data Size: 64KB - Virtual size: 87KB

.rsrc Size: 48KB - Virtual size: 46KB

.text
Size: 100KB - Virtual size: 96KB

.rdata
Size: 108KB - Virtual size: 105KB

.data
Size: 64KB - Virtual size: 87KB

.rsrc
Size: 48KB - Virtual size: 46KB