272bb66b10ade039f8d1e966a2df82c5_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

272bb66b10ade039f8d1e966a2df82c5_JaffaCakes118
Size

565KB
MD5

272bb66b10ade039f8d1e966a2df82c5
SHA1

66ae8b226202da85c05c5314bdd82542a27b13f2
SHA256

f3316a61759ea9cc571de845308e525eb3173afb27b8c993d76ae43afe3fd5b3
SHA512

7ad936f6ad5d771cd805fc76cc3c553374aeca3afba34c1466afa2b1e808c6f459aabc51202839b4c6c5eaae0c4c074c9a7cdb01b6350f1a81476155e17c8f3a
SSDEEP

12288:4CP4dq457tkMQQ4T5XCjI7w144oYyeJ5RSnMdxgfMSOngQKHABIcyMupUL9ChqwM:I7e4oYy3QbBIcUULAjWw4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
272bb66b10ade039f8d1e966a2df82c5_JaffaCakes118

Files

272bb66b10ade039f8d1e966a2df82c5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0f745e3cdd4aa43d162dc52bc7da0d21

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnumPropsW
ToAscii
SetWindowsHookW
SetCursorPos
EnumPropsExA
SendMessageW
SetWindowContextHelpId
CreateDialogParamA
DdeUnaccessData
OpenWindowStationW
DdeAccessData
SendNotifyMessageW
SetWindowWord
GetIconInfo
GetSysColorBrush
GetDlgCtrlID
GetScrollPos
SetDlgItemTextA
RegisterClassA
SetCapture
ModifyMenuA
RegisterClassExA
DefWindowProcA
AppendMenuW
GetAsyncKeyState
CopyAcceleratorTableA
DestroyMenu

shell32

SHGetDataFromIDListW
SHChangeNotify
DragQueryFileW

comctl32

InitCommonControlsEx

kernel32

LCMapStringA
WriteFile
TlsAlloc
HeapDestroy
GetStringTypeA
SetEnvironmentVariableA
HeapReAlloc
CompareStringA
GetOEMCP
CreateMutexA
SetUnhandledExceptionFilter
VirtualFree
WideCharToMultiByte
GetCurrentThreadId
FoldStringW
GetTimeFormatW
LCMapStringW
MultiByteToWideChar
GetStartupInfoA
SetConsoleCtrlHandler
GetTimeZoneInformation
EnumDateFormatsExW
VirtualQuery
LoadLibraryA
QueryPerformanceCounter
FreeLibrary
GetStdHandle
EnterCriticalSection
VirtualAlloc
TlsFree
GetStringTypeW
DeleteCriticalSection
GetEnvironmentStrings
TerminateProcess
SetLastError
InitializeCriticalSection
GetTickCount
GetProcAddress
SetSystemTime
OpenEventA
CloseHandle
GetEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentThread
SetHandleCount
GetConsoleMode
GetConsoleCP
GetSystemTimeAsFileTime
GetCurrentProcess
OpenMutexA
GetEnvironmentStringsW
SetStdHandle
LocalHandle
SetEndOfFile
InterlockedIncrement
RtlUnwind
HeapFree
GetLocaleInfoW
HeapSize
GetVersionExA
CompareStringW
CreateFileA
GetDateFormatA
FlushFileBuffers
FreeEnvironmentStringsW
InterlockedDecrement
ReadFile
GetConsoleOutputCP
IsValidCodePage
GetFileType
ReadConsoleW
IsValidLocale
TlsSetValue
EnumSystemLocalesA
HeapAlloc
GetCPInfo
WriteConsoleInputW
TlsGetValue
FindFirstFileExW
LeaveCriticalSection
InterlockedExchange
GetPrivateProfileSectionA
WriteConsoleA
MoveFileExW
FreeEnvironmentStringsA
LocalFileTimeToFileTime
IsDebuggerPresent
GetProcessHeap
GetCurrentProcessId
SetFilePointer
GetACP
GetLastError
Sleep
GetTimeFormatA
WriteConsoleW
HeapCreate
GetUserDefaultLCID
GetLocaleInfoA
GetCommandLineA
ExitProcess
GetPrivateProfileStructW
GetModuleHandleA
GetModuleFileNameA
GlobalReAlloc

Sections

.text
Size: 236KB - Virtual size: 235KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 315KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0f745e3cdd4aa43d162dc52bc7da0d21

Headers

File Characteristics

Imports

user32

shell32

comctl32

kernel32

Sections

.text Size: 236KB - Virtual size: 235KB

.rdata Size: 10KB - Virtual size: 14KB

.data Size: 315KB - Virtual size: 314KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 236KB - Virtual size: 235KB

.rdata
Size: 10KB - Virtual size: 14KB

.data
Size: 315KB - Virtual size: 314KB

.rsrc
Size: 3KB - Virtual size: 3KB