2716e60619646b1b3c5187753bf7d348_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2716e60619646b1b3c5187753bf7d348_JaffaCakes118
Size

299KB
MD5

2716e60619646b1b3c5187753bf7d348
SHA1

39cb31aa9e8b2b90f65fc690ed6c2b1b61df6a8d
SHA256

d10810bac080868ee93174a6af7a7c2c54146dded87bfdcbcbaed345ecaa38a0
SHA512

876757cc6a8eae44dfb663368fb3097c72eed0d2f4d47202f205221b41369f068a0f597e66657a24b56e1425521bfa6b158aaa996451e32e7ac75ccb93740d98
SSDEEP

6144:PWzbwdPCiOZvBPz/yGLTga2oSnbzo0naG4:egeJPz/yGLTqoSnbPaG4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2716e60619646b1b3c5187753bf7d348_JaffaCakes118

Files

2716e60619646b1b3c5187753bf7d348_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b360565c453565bbed1fdaf2fc3252c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

oleaut32

SysFreeString
SysReAllocStringLen
SysAllocStringLen
SafeArrayPtrOfIndex
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayCreate
VariantChangeType
VariantCopy
VariantClear
VariantInit

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

user32

GetKeyboardType
DestroyWindow
LoadStringA
MessageBoxA
CharNextA
WaitMessage
ValidateRect
UpdateWindow
TranslateMessage
ShowWindow
SetWindowTextA
SetWindowPos
SetWindowLongA
SetPropA
SetParent
SetMenuItemInfoA
SetMenu
SetForegroundWindow
SetFocus
SetCursor
SetActiveWindow
SendMessageA
ScreenToClient
RemovePropA
RemoveMenu
ReleaseDC
RegisterClassA
PostQuitMessage
PostMessageA
PeekMessageA
OffsetRect
MessageBoxA
LoadStringA
LoadIconA
LoadCursorA
IsWindowVisible
IsWindowEnabled
IsWindow
InvalidateRect
InsertMenuItemA
GetWindowTextLengthA
GetWindowTextA
GetWindowRect
GetWindowDC
GetUpdateRgn
GetSystemMetrics
GetSystemMenu
GetSysColor
GetPropA
GetParent
GetWindow
GetMenuItemInfoA
GetKeyState
GetIconInfo
GetFocus
GetDC
GetClientRect
GetClassInfoA
GetCapture
FillRect
EndPaint
EnableMenuItem
DrawMenuBar
DrawIconEx
DispatchMessageA
DestroyWindow
DestroyMenu
DestroyCursor
DeleteMenu
DefWindowProcA
CreatePopupMenu
CreateMenu
CopyImage
ClientToScreen
CheckMenuRadioItem
CallWindowProcA
BeginPaint
CharNextA
CharToOemA
CreateWindowExA

kernel32

GetACP
Sleep
VirtualFree
VirtualAlloc
GetTickCount
QueryPerformanceCounter
GetCurrentThreadId
InterlockedDecrement
InterlockedIncrement
VirtualQuery
WideCharToMultiByte
MultiByteToWideChar
lstrlen
lstrcpyn
LoadLibraryExA
GetThreadLocale
GetStartupInfoA
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLocaleInfoA
GetCommandLineA
FreeLibrary
FindFirstFileA
FindClose
ExitProcess
WriteFile
UnhandledExceptionFilter
RtlUnwind
RaiseException
GetStdHandle
TlsSetValue
TlsGetValue
LocalAlloc
GetModuleHandleA
WriteFile
WaitForSingleObject
VirtualQuery
VirtualFree
VirtualAlloc
UpdateResourceA
UnmapViewOfFile
SizeofResource
SetFilePointer
SetEvent
SetEndOfFile
ResetEvent
ReadFile
MoveFileA
MapViewOfFile
LockResource
LoadResource
LoadLibraryExA
LoadLibraryA
LeaveCriticalSection
InitializeCriticalSection
GlobalFree
GlobalAlloc
GetVolumeInformationA
GetVersionExA
GetVersion
GetThreadLocale
GetStdHandle
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLocaleInfoA
GetLocalTime
GetLastError
GetFullPathNameA
GetFileSize
GetFileAttributesA
GetDiskFreeSpaceA
GetDateFormatA
GetCurrentThreadId
GetCommandLineA
GetCPInfo
FreeLibrary
FormatMessageA
FlushViewOfFile
FindResourceExA
ExitProcess
EnumResourceTypesA
EnumResourceNamesA
EnumResourceLanguagesA
EnumCalendarInfoA
EnterCriticalSection
EndUpdateResourceA
DeleteFileA
DeleteCriticalSection
CreateFileMappingA
CreateFileA
CreateEventA
CopyFileA
CompareStringA
CloseHandle
BeginUpdateResourceA
Sleep

gdi32

StretchDIBits
StretchBlt
SetWindowOrgEx
SetTextColor
SetROP2
SetBrushOrgEx
SetBkMode
SetBkColor
SelectObject
SelectClipRgn
SaveDC
RestoreDC
MoveToEx
IntersectClipRect
GetWindowOrgEx
GetStockObject
GetRgnBox
GetPixel
GetObjectA
ExcludeClipRect
DeleteObject
DeleteDC
CreateSolidBrush
CreateRectRgn
CreateFontIndirectA
CreateDIBSection
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
BitBlt

shell32

DragQueryPoint
DragQueryFile
DragFinish
DragAcceptFiles

comdlg32

GetSaveFileNameA
GetOpenFileNameA

ole32

OleInitialize

comctl32

InitCommonControls

Exports

Exports

method__Attach
method__Copyright
method__Detach
method__Name
method__SDK
method__VersionH
method__VersionL

Sections

.text
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b360565c453565bbed1fdaf2fc3252c0

Headers

File Characteristics

Imports

oleaut32

advapi32

user32

kernel32

gdi32

shell32

comdlg32

ole32

comctl32

Exports

Exports

Sections

.text Size: 164KB - Virtual size: 164KB

.data Size: 56KB - Virtual size: 56KB

.tls Size: 16KB - Virtual size: 16KB

.idata Size: 8KB - Virtual size: 8KB

.rsrc Size: 51KB - Virtual size: 51KB

.text
Size: 164KB - Virtual size: 164KB

.data
Size: 56KB - Virtual size: 56KB

.tls
Size: 16KB - Virtual size: 16KB

.idata
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 51KB - Virtual size: 51KB