27df8281e6c532d60f4c0ced60cd4e58_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

27df8281e6c532d60f4c0ced60cd4e58_JaffaCakes118
Size

261KB
MD5

27df8281e6c532d60f4c0ced60cd4e58
SHA1

c02ba6a6640b894f0aa68c70a17628a8c2b11a69
SHA256

19abe83589d3a05a64108d6f06c1bf1cb8766c046665f2277adf8f7b07b22d4a
SHA512

d1049d91b124439b80c737aa4a05da5ecb0e268357a971b80539eb2cb89b2bf5a93ce4635f3a1ab57bd9ed9075c0701274fef07b84996dd7947095d35bc25e39
SSDEEP

6144:37VESqd1RLMZ6D7M8tTGvF/RvPW3+ZhsQrBzwWP9olU6IfQOhQ:376hdbLVD71GvFhW3+TVN9P9o+vh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27df8281e6c532d60f4c0ced60cd4e58_JaffaCakes118

Files

27df8281e6c532d60f4c0ced60cd4e58_JaffaCakes118
.exe windows:4 windows x86 arch:x86

02934c2e5b4423bdbafc73cf3a86931b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PageSetupDlgW
GetOpenFileNameW
PrintDlgA
ChooseFontW
GetFileTitleW
GetSaveFileNameW

gdi32

SetMapperFlags
SetICMProfileA
ScaleViewportExtEx
CreatePenIndirect
Ellipse
ColorCorrectPalette
CloseEnhMetaFile
GetPaletteEntries
RemoveFontResourceA
PolyBezierTo
SetPixelFormat
EndPage
CreateDCW
PlgBlt
GetTextExtentExPointW
GetObjectA
CreateCompatibleBitmap
CreateDCA
SetFontEnumeration
SelectPalette

user32

SetMessageQueue
SetCapture
OpenWindowStationW
GetWindowRect
DdeCreateStringHandleW
MessageBeep
UnregisterDeviceNotification
CreateMDIWindowA
DdeReconnect
MessageBoxA
GetWindowModuleFileNameA
GetKeyboardLayoutNameW
BeginPaint
SetDlgItemInt
DefWindowProcA
EnumDisplaySettingsW
WinHelpA

wininet

GetUrlCacheConfigInfoA
InternetGetLastResponseInfoA

kernel32

MultiByteToWideChar
TlsAlloc
TlsFree
SetLastError
InterlockedExchange
GetCurrentProcessId
GetProcAddress
LeaveCriticalSection
HeapSize
CreateThread
GetStartupInfoW
SetTimeZoneInformation
GetOEMCP
GetLocaleInfoA
WideCharToMultiByte
InitializeCriticalSection
GetEnvironmentStringsW
ReadConsoleOutputCharacterW
GetVersionExA
TlsSetValue
LoadLibraryA
VirtualProtect
RtlUnwind
FreeEnvironmentStringsW
GetDateFormatA
SetEnvironmentVariableA
VirtualFree
GetModuleFileNameA
DeleteCriticalSection
VirtualQuery
SetHandleCount
CompareStringA
GetCommandLineA
GetCPInfo
EnumSystemLocalesA
GetTimeZoneInformation
GetStringTypeW
WriteFile
IsValidCodePage
GetUserDefaultLCID
GetCurrentThreadId
GetCurrentThread
ExitProcess
GetFileType
GetStdHandle
LCMapStringA
HeapAlloc
IsValidLocale
GetCommandLineW
GetSystemInfo
GetLocaleInfoW
TlsGetValue
RaiseException
GetModuleFileNameW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStringTypeA
GetStartupInfoA
HeapDestroy
GetTickCount
QueryPerformanceCounter
CompareStringW
GetACP
UnhandledExceptionFilter
GetModuleHandleA
GetCompressedFileSizeW
UnlockFile
TerminateProcess
GetThreadContext
LCMapStringW
GetTimeFormatA
HeapReAlloc
VirtualAlloc
GetLastError
GetCurrentProcess
GetSystemTimeAsFileTime
HeapCreate
HeapFree
IsBadWritePtr
EnterCriticalSection

Sections

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 135KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

02934c2e5b4423bdbafc73cf3a86931b

Headers

File Characteristics

Imports

comdlg32

gdi32

user32

wininet

kernel32

Sections

.text Size: 112KB - Virtual size: 112KB

.data Size: 135KB - Virtual size: 146KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 112KB - Virtual size: 112KB

.data
Size: 135KB - Virtual size: 146KB

.rsrc
Size: 12KB - Virtual size: 11KB