160a6ed7812a416e0fbc9a99fd1d0500_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

160a6ed7812a416e0fbc9a99fd1d0500_JaffaCakes118
Size

196KB
MD5

160a6ed7812a416e0fbc9a99fd1d0500
SHA1

65c182d21c293a2224a640bb612839454236f7fd
SHA256

71e4c3d87b182006deeab1318ef4b5d33b0cf92afef55676bb53db3b6bce4aec
SHA512

d6a81f533f37475277defce087e1fab6af3e8ac028ed7c29045083182cdd22ce295766391304a7ea26b813123f6137b264009d7b3f3601ea72bc5c10dede6411
SSDEEP

6144:s3b4/MZ0a1LJckOalmTCWxWnKbAgXzMc:5/MZlckOAmBWnuXzMc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
160a6ed7812a416e0fbc9a99fd1d0500_JaffaCakes118

Files

160a6ed7812a416e0fbc9a99fd1d0500_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ad410fde99e3104a6e5fc843ad950eaf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleIsRunning
OleRegGetUserType
CoSuspendClassObjects
CreateStdProgressIndicator
OleBuildVersion
StringFromCLSID
OleCreateEx
CoUninitialize
CoRegisterSurrogate
HGLOBAL_UserMarshal
OleCreateEmbeddingHelper
CreateILockBytesOnHGlobal
CoGetMarshalSizeMax
CoGetClassObject
CreateOleAdviseHolder
CreateGenericComposite
CLIPFORMAT_UserUnmarshal
StgOpenStorageOnILockBytes
HACCEL_UserUnmarshal
CoDisconnectObject
HPALETTE_UserFree
OleCreateLinkFromData
CoRevokeClassObject
HWND_UserSize
HBITMAP_UserSize
STGMEDIUM_UserUnmarshal
IIDFromString
OleConvertIStorageToOLESTREAMEx
StgOpenAsyncDocfileOnIFillLockBytes
OleCreateStaticFromData
ReadClassStm
HMENU_UserFree
CoGetStandardMarshal
StgGetIFillLockBytesOnILockBytes
StgCreateStorageEx
HBITMAP_UserFree
CoMarshalInterThreadInterfaceInStream
OleInitialize
CoBuildVersion
CreateFileMoniker
StgCreatePropSetStg
OleRegEnumFormatEtc
CreateAntiMoniker
CreateBindCtx
CoGetPSClsid
GetHGlobalFromILockBytes
OleConvertOLESTREAMToIStorage
CoCreateInstance

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

user32

GetMenuItemInfoA

advapi32

RegLoadKeyA

comdlg32

ChooseColorA
GetFileTitleA
CommDlgExtendedError
GetSaveFileNameW
FindTextW
GetFileTitleW
GetSaveFileNameA

shlwapi

StrFromTimeIntervalW
PathParseIconLocationW
PathIsRootA
PathCanonicalizeA
PathAddBackslashW
SHRegEnumUSKeyA
PathRelativePathToW
PathRemoveExtensionW
PathRemoveBackslashA
PathFindFileNameA
PathIsUNCServerW
StrCpyW
SHRegEnumUSKeyW
PathIsURLA
PathAddBackslashA
PathIsUNCW
PathStripToRootW
PathCompactPathExW
PathIsSameRootW
PathFileExistsW
SHRegCloseUSKey
SHDeleteKeyW
PathSkipRootA
PathMakeSystemFolderW
SHRegWriteUSValueA
SHQueryValueExW
PathIsContentTypeW
SHOpenRegStreamA
PathMatchSpecA
PathIsRelativeW
SHRegGetBoolUSValueW
PathUnquoteSpacesW
StrCmpW
StrIsIntlEqualW
PathMakePrettyW
PathCombineW
StrPBrkW
SHRegQueryUSValueW
PathIsURLW
PathAddExtensionA
PathFindNextComponentA
PathSearchAndQualifyA
StrCSpnA
PathMatchSpecW
PathAppendW
SHRegQueryUSValueA
StrSpnW
PathGetArgsW
StrDupW
PathCommonPrefixA
PathRenameExtensionW
PathRemoveArgsA
SHRegOpenUSKeyA
PathUnquoteSpacesA
PathQuoteSpacesW
PathFindNextComponentW
ChrCmpIA
PathFindOnPathA
SHEnumValueW
PathIsRelativeA
StrCSpnIW
PathMakePrettyA
PathAddExtensionW

kernel32

GetModuleHandleA
GetStartupInfoA

Sections

.text
Size: 180KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 912KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ad410fde99e3104a6e5fc843ad950eaf

Headers

File Characteristics

Imports

ole32

msvcrt

user32

advapi32

comdlg32

shlwapi

kernel32

Sections

.text Size: 180KB - Virtual size: 176KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 912KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 180KB - Virtual size: 176KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 912KB

.rsrc
Size: 4KB - Virtual size: 3KB