17219ea94693fd20cce05e7fa6875e08_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

17219ea94693fd20cce05e7fa6875e08_JaffaCakes118
Size

564KB
MD5

17219ea94693fd20cce05e7fa6875e08
SHA1

d56d4409fdf04c4abe7d9e4a89135a7e0c1c2abd
SHA256

d8ce832aeb53fbe1b7f81ec0bc6c067600a6283cc178951b4a1a07198b69bb3e
SHA512

dca02b9d7b5915e7ca5d4725df470cc06f3d83c0a0ca388521b82e89114028f641b55c365adc9eeb1f6846d57e6fe3c96885f379c48d34d353989758ab5b1909
SSDEEP

12288:wmIVdX2YROgtx7PfY6iPqgO7zHw3tuaRn+lzwA:zIVJXd7gGB7zHsuSmzwA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17219ea94693fd20cce05e7fa6875e08_JaffaCakes118

Files

17219ea94693fd20cce05e7fa6875e08_JaffaCakes118
.exe windows:4 windows x86 arch:x86

05f0f668ba20693fbc1675fa23ba368a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetClipboardViewer
RegisterClassA
ShowWindow
DefWindowProcW
ModifyMenuW
CreateWindowExW
BringWindowToTop
CreateCaret
DestroyWindow
EnumDesktopsW
RegisterClassExA
MessageBoxA
GetClipCursor

comctl32

InitCommonControlsEx
ImageList_Remove
ImageList_ReplaceIcon
DrawInsert
ImageList_Write
DrawStatusTextW
ImageList_GetIcon
DestroyPropertySheetPage
ImageList_Create
ImageList_AddIcon
ImageList_SetDragCursorImage
CreatePropertySheetPageA
ImageList_AddMasked
GetEffectiveClientRect
ImageList_SetBkColor
ImageList_Read
ImageList_Merge

comdlg32

PageSetupDlgA
PrintDlgW
PageSetupDlgW
GetOpenFileNameW

kernel32

GetVersionExA
TlsFree
SetFilePointer
GetLocaleInfoW
SetEnvironmentVariableW
RtlUnwind
GetTickCount
GetDateFormatA
GetStartupInfoW
VirtualFreeEx
EnterCriticalSection
CloseHandle
LeaveCriticalSection
VirtualFree
IsBadWritePtr
GetCPInfo
GetStringTypeA
HeapFree
CreateMutexA
DeleteCriticalSection
GetACP
FlushFileBuffers
GetExitCodeProcess
DeleteAtom
SetHandleCount
VirtualProtect
TerminateProcess
HeapAlloc
ReadFile
GetStartupInfoA
GetTimeZoneInformation
GetUserDefaultLCID
EnumSystemLocalesA
CompareStringW
GetCommandLineW
VirtualQuery
GetStdHandle
HeapCreate
GetModuleHandleA
WideCharToMultiByte
InitializeCriticalSection
GetLongPathNameA
GetModuleFileNameW
ExitProcess
GetCommandLineA
CompareStringA
ReadFileEx
LoadLibraryA
GetStringTypeW
GetEnvironmentStringsW
GetFileAttributesExW
CreateWaitableTimerA
HeapValidate
GetProcAddress
InterlockedExchange
SetEnvironmentVariableA
GetFileAttributesW
GetOEMCP
IsValidLocale
GetLastError
MultiByteToWideChar
GetSystemInfo
GetFileType
GetEnvironmentStrings
lstrcmp
QueryPerformanceCounter
GetCurrentThread
TlsAlloc
LCMapStringA
VirtualAlloc
TlsGetValue
GetLocaleInfoA
FreeEnvironmentStringsA
GetCurrentProcess
GetNamedPipeHandleStateA
GetCurrentProcessId
GetProcAddress
HeapDestroy
LCMapStringW
SetCriticalSectionSpinCount
FreeEnvironmentStringsW
SetLastError
SetStdHandle
GetCurrentThreadId
GetModuleFileNameA
HeapReAlloc
UnhandledExceptionFilter
IsValidCodePage
OpenMutexA
GetSystemTimeAsFileTime
GetTimeFormatA
WriteConsoleW
lstrlen
TlsSetValue
WriteFile
HeapSize

gdi32

LPtoDP
CreateCompatibleDC
PatBlt
Polyline
GetMetaRgn
GetClipRgn
Rectangle
EqualRgn
SetICMProfileW
PtVisible

Sections

.text
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 250KB - Virtual size: 274KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 117KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

05f0f668ba20693fbc1675fa23ba368a

Headers

File Characteristics

Imports

user32

comctl32

comdlg32

kernel32

gdi32

Sections

.text Size: 137KB - Virtual size: 137KB

.rdata Size: 250KB - Virtual size: 274KB

.data Size: 117KB - Virtual size: 115KB

.rsrc Size: 58KB - Virtual size: 58KB

.text
Size: 137KB - Virtual size: 137KB

.rdata
Size: 250KB - Virtual size: 274KB

.data
Size: 117KB - Virtual size: 115KB

.rsrc
Size: 58KB - Virtual size: 58KB