1326f739c1a3154dd1204c47ba7c44f6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1326f739c1a3154dd1204c47ba7c44f6_JaffaCakes118
Size

147KB
MD5

1326f739c1a3154dd1204c47ba7c44f6
SHA1

1e0aab3a86fb7d91ab9100e9f136281e1c1732b1
SHA256

cc6536067a0092dcbe2c32949587e6881fc84b5ab77fe46f58cbf0b19635adfc
SHA512

7fad9aef3d08a9ddd25087f5a51a327cba65145ae76c74b4f5a533af896090f16c6ad7ce8c0f0f20c0eb0551ffe4e556c3b57810e60b1e145ea6075f44300489
SSDEEP

3072:kOvaQ4r4k5jdiG1sIKtNbSiC7q2OKLg3Y3AayhiQyjd8t:kFrztEp0jHIGA9hi7B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1326f739c1a3154dd1204c47ba7c44f6_JaffaCakes118

Files

1326f739c1a3154dd1204c47ba7c44f6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aa062b2e1c30feecf96e8ca6eb462e24

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CompareFileTime
CopyFileA
CreateEventW
CreateFileMappingA
CreateFileW
CreateProcessW
CreateThread
DeviceIoControl
DisableThreadLibraryCalls
FileTimeToLocalFileTime
FindClose
FindNextFileW
FlushFileBuffers
FreeLibrary
GetCPInfo
GetCommandLineA
GetConsoleOutputCP
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetDriveTypeA
GetFileAttributesA
GetFileSize
GetFileTime
GetFileType
GetFullPathNameA
GetLastError
GetModuleFileNameA
GetOEMCP
GetProcessHeap
GetStartupInfoW
GetSystemDirectoryA
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathW
GetTickCount
GetUserDefaultLCID
GetUserDefaultLangID
GetVersion
GetVersionExA
GetVersionExW
GlobalAddAtomA
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
HeapAlloc
HeapDestroy
InterlockedCompareExchange
InterlockedDecrement
InterlockedIncrement
IsBadWritePtr
IsValidCodePage
LCMapStringW
LeaveCriticalSection
LoadLibraryExA
LoadLibraryExW
LoadResource
LocalFree
MoveFileA
MultiByteToWideChar
OpenProcess
OutputDebugStringA
QueryPerformanceCounter
RaiseException
ReadFile
RemoveDirectoryA
RtlUnwind
SetCurrentDirectoryA
SetEnvironmentVariableA
SetFilePointer
SetThreadPriority
SetUnhandledExceptionFilter
TlsAlloc
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
WaitForSingleObject
WriteConsoleA
WriteFile
lstrcatA
lstrcmpiW
lstrlenW

user32

AdjustWindowRectEx
CallNextHookEx
CallWindowProcA
ClientToScreen
CreateMenu
DispatchMessageA
DrawIcon
DrawIconEx
DrawTextA
EnableWindow
EndDialog
EndPaint
FillRect
GetCursorPos
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyState
GetMenuItemID
GetMessageA
GetMessagePos
GetScrollPos
GetSysColorBrush
GetSystemMenu
GetWindowPlacement
GetWindowTextA
InflateRect
InsertMenuItemA
IsChild
IsRectEmpty
IsWindow
KillTimer
LoadStringA
MapWindowPoints
MessageBoxA
PtInRect
RedrawWindow
RegisterWindowMessageA
ReleaseCapture
ScrollWindow
SendDlgItemMessageA
SetCapture
SetClipboardData
SetScrollPos
SetTimer
SetWindowPos
ShowCursor
ShowWindow
SystemParametersInfoA
TrackPopupMenu
WaitMessage
WinHelpA

gdi32

BeginPath
CloseMetaFile
CreateDCA
CreateDCW
CreateDIBPatternBrushPt
CreateDIBSection
CreateEllipticRgn
CreateFontA
CreateFontIndirectW
CreateHatchBrush
CreateICA
CreatePalette
CreatePatternBrush
CreatePolygonRgn
CreateRectRgnIndirect
DPtoLP
DeleteMetaFile
EnumEnhMetaFile
EnumFontFamiliesExW
Escape
ExtCreateRegion
ExtTextOutA
FillPath
FrameRgn
GetBitmapBits
GetBkColor
GetCharWidthA
GetDIBColorTable
GetDeviceCaps
GetEnhMetaFilePaletteEntries
GetNearestPaletteIndex
GetObjectW
GetRegionData
GetTextAlign
GetTextExtentExPointW
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextFaceW
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
LineDDA
OffsetClipRgn
PatBlt
Pie
PolyBezierTo
Polyline
PolylineTo
PtInRegion
RealizePalette
RectInRegion
Rectangle
RoundRect
ScaleViewportExtEx
SelectClipRgn
SelectObject
SetAbortProc
SetBkColor
SetBkMode
SetBrushOrgEx
SetDIBitsToDevice
SetEnhMetaFileBits
SetGraphicsMode
SetROP2
SetTextCharacterExtra
SetViewportOrgEx
SetWindowExtEx
StartDocW
StrokePath
TextOutW
UnrealizeObject

shell32

DragAcceptFiles
DragFinish
SHAppBarMessage
SHGetDiskFreeSpaceExW
SHGetFileInfo
SHGetSpecialFolderLocation
SHGetSpecialFolderPathW
ShellExecuteExA
ShellExecuteExW
Shell_NotifyIconA
Shell_NotifyIconW

comctl32

CreatePropertySheetPageW
CreateStatusWindowA
CreateToolbarEx
DestroyPropertySheetPage
ImageList_Add
ImageList_AddMasked
ImageList_DragEnter
ImageList_DragLeave
ImageList_DrawEx
ImageList_EndDrag
ImageList_GetIcon
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_LoadImageW
ImageList_Read
ImageList_Remove
ImageList_Replace
ImageList_SetDragCursorImage
ImageList_SetIconSize
ImageList_SetImageCount
ImageList_Write
InitCommonControls
InitCommonControlsEx
PropertySheetA
PropertySheetW

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aa062b2e1c30feecf96e8ca6eb462e24

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comctl32

Sections

.text Size: 39KB - Virtual size: 38KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 85KB - Virtual size: 84KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 39KB - Virtual size: 38KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 85KB - Virtual size: 84KB

.rsrc
Size: 16KB - Virtual size: 16KB