26240b3ace75a98f60ee0fe321b1ff68_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

26240b3ace75a98f60ee0fe321b1ff68_JaffaCakes118
Size

173KB
MD5

26240b3ace75a98f60ee0fe321b1ff68
SHA1

3ea0b04eef13f824eb698b89b67dc747c5b90651
SHA256

d253043c657a5ee49c8f198f10162d233c0824e878af568bb1f55517de8ba1b7
SHA512

ab85d97b0bab1cb9454aae29ac689a9031fcf0f564c633750fbec7b4fc143ab67b883b40b2bf4ac7051fa8bc17d4fc27ed99d06bbee3479d910dc74729de31d3
SSDEEP

3072:R3TsUtysQx15zEVWlQo/ganx8Vj1A3o2M0sb6P06lPOCARv:VEcWgLVG3o2Sb16tOCW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26240b3ace75a98f60ee0fe321b1ff68_JaffaCakes118

Files

26240b3ace75a98f60ee0fe321b1ff68_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2aa87f1d319d88b5398f42d95dc9bfa0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoDisconnectObject
StgCreateDocfileOnILockBytes
MkParseDisplayName
WriteClassStm
CoTaskMemFree

oleaut32

SysFreeString
OleLoadPicture
SysAllocStringLen
SafeArrayCreate
SafeArrayUnaccessData
VariantChangeType
GetErrorInfo
SysReAllocStringLen
SafeArrayPtrOfIndex

ntdll

wcscat
RtlDeleteCriticalSection
atoi
NtWaitForSingleObject
atol

msvcrt

srand
sqrt
mbstowcs
time
malloc
wcscspn
clock
memcpy
pow
wcschr
wcsncmp
memset
strcmp

shlwapi

SHDeleteKeyA
SHQueryInfoKeyA
SHGetValueA
PathFileExistsA
SHStrDupA
SHSetValueA
PathGetCharTypeA
SHQueryValueExA
SHDeleteValueA
PathIsContentTypeA

version

GetFileVersionInfoA
VerFindFileA

user32

EnumThreadWindows
RegisterClassA
EnumChildWindows
GetIconInfo
CharLowerA
GetDCEx
CharToOemA
FrameRect
GetMenuState
CallWindowProcA
GetScrollRange
DrawTextA
MessageBoxA
EnumWindows
GetParent
GetClassInfoA
IsWindowVisible
DispatchMessageW
SetWindowTextA
GetFocus
SetCursor
GetSysColorBrush
GetKeyNameTextA
GetClientRect
SetWindowLongA
IsDialogMessageA
GetCursor
DrawFrameControl
CreateIcon
FindWindowA
GetMessagePos
DeferWindowPos
ShowScrollBar
DrawEdge
GetMenuStringA
GetMenu
FillRect
CharNextA
CallNextHookEx
TrackPopupMenu
DispatchMessageA
BeginPaint
CharLowerBuffA
ClientToScreen
GetClipboardData
IsMenu
IsWindowEnabled
EqualRect
CreateWindowExA
GetScrollPos
DrawMenuBar
SystemParametersInfoA
GetCursorPos
IsChild
GetWindowTextA
EndDeferWindowPos
HideCaret
EnableWindow
DefFrameProcA
GetDesktopWindow
SetTimer
GetMenuItemInfoA
CheckMenuItem
GetForegroundWindow
BeginDeferWindowPos
EnableScrollBar
DefMDIChildProcA
GetDlgItem
GetClassLongA
EndPaint
GetCapture
ShowWindow
GetSysColor
DrawIcon
GetKeyState
EnableMenuItem
GetWindow
GetPropA

kernel32

GetCPInfo
WaitForSingleObject
CreateThread
GetCommandLineA
lstrcmpiA
GetDateFormatA
MoveFileExA
GetCurrentProcess
GlobalAlloc
HeapAlloc
LoadResource
GetFileAttributesA
VirtualAllocEx
GetCurrentThread
SetHandleCount
MulDiv
GetFileType
LoadLibraryA
GetLocaleInfoA
EnterCriticalSection
GetModuleHandleA
GetSystemDefaultLangID
ExitThread
VirtualAlloc
GetLastError
GetEnvironmentStrings
ExitProcess
GetCurrentProcessId
SetThreadLocale
Sleep
LocalFree
EnumCalendarInfoA
GetCurrentThreadId
WriteFile
GetProcessHeap
GetLocalTime
GetProcAddress
ReadFile
RaiseException
GetVersionExA
GetDiskFreeSpaceA
ResetEvent
GlobalAddAtomA
GetModuleFileNameA
lstrlenA
SetFilePointer
GetVersion
CompareStringA
HeapFree
GetOEMCP
GlobalDeleteAtom
GetThreadLocale
SetEndOfFile
CreateFileA
SetEvent
InitializeCriticalSection
GetACP
CloseHandle
LocalReAlloc
DeleteFileA
VirtualFree
LockResource
DeleteCriticalSection
GetStartupInfoA
MoveFileA
VirtualQuery
FreeResource
GetFileSize
HeapDestroy
lstrcpynA
GetStringTypeW

Sections

text
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 115KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2aa87f1d319d88b5398f42d95dc9bfa0

Headers

File Characteristics

Imports

ole32

oleaut32

ntdll

msvcrt

shlwapi

version

user32

kernel32

Sections

text Size: 48KB - Virtual size: 48KB

DATA Size: 115KB - Virtual size: 191KB

.tls Size: 8KB - Virtual size: 8KB

text
Size: 48KB - Virtual size: 48KB

DATA
Size: 115KB - Virtual size: 191KB

.tls
Size: 8KB - Virtual size: 8KB