28d5a0af14a23f89e8ad064881114d0b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

28d5a0af14a23f89e8ad064881114d0b_JaffaCakes118
Size

236KB
MD5

28d5a0af14a23f89e8ad064881114d0b
SHA1

a016ef59ff18aaa5b21a934480f06a8278c98ccf
SHA256

c9be2b84ce79ac2cb992e3edbee0f79606cb9003eb8759fa359af058246073e8
SHA512

83009828ef0179fa5eb058ba3032360d2886a8d87e874233bde6237220ac49aaedb372d63c3697f2832842ceeb7e173f607f1d825c4f97848ffdcde867f27215
SSDEEP

6144:NQp7Gj01gTGZtiEItcv9WHlW/PiaGeHJcIY:NQpQWgTGZtxIto9WHlmKS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28d5a0af14a23f89e8ad064881114d0b_JaffaCakes118

Files

28d5a0af14a23f89e8ad064881114d0b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

42d46fbbd41e6271383934bd8e0b4dae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerFindFileA
GetFileVersionInfoSizeA
GetFileVersionInfoA

gdi32

CreateCompatibleDC
BitBlt
GetDIBColorTable
CreateDIBitmap
CreatePalette
CreatePenIndirect
CreateFontIndirectA
GetBitmapBits
CopyEnhMetaFileA

kernel32

GetModuleHandleW
ExitProcess
FindResourceA
lstrcpynA
FreeLibrary
SetEvent
GetProcAddress
WaitForSingleObject
GetCPInfo
GetCurrentProcess
GlobalAlloc
lstrlenA
ExitThread
GetVersionExA
GetModuleHandleA
LoadLibraryA
WriteFile
IsBadReadPtr
VirtualAllocEx
GetCurrentThread
GetLastError

user32

GetKeyNameTextA
SendMessageA
LoadCursorA
DrawFrameControl
CreateWindowExA
UnhookWindowsHookEx
CharNextW
GetCursor
OemToCharA
LoadBitmapA
DestroyMenu
IsChild
ReleaseCapture
ScrollWindow
IsWindowEnabled
GetMessagePos
ReleaseDC
SetParent
DispatchMessageA
CharLowerBuffA
SetActiveWindow
SetCapture
UnregisterClassA
GetClipboardData
PeekMessageW
SetFocus
GetKeyboardType
GetWindowThreadProcessId
IsRectEmpty
InsertMenuItemA
CallNextHookEx
RegisterWindowMessageA
SystemParametersInfoA
EnumChildWindows
GetSubMenu
EnableWindow
GetDCEx
GetMenuItemInfoA
CharUpperBuffA
ShowWindow
GetTopWindow
GetClassLongA
PostQuitMessage
KillTimer
DrawMenuBar
TranslateMDISysAccel
GetWindowLongA
IsDialogMessageA
MapVirtualKeyA
TranslateMessage
CreatePopupMenu
GetScrollPos
EnumWindows
IsIconic
GetScrollInfo
FillRect
BeginPaint
TrackPopupMenu
GetSystemMenu
EnableScrollBar
SetMenuItemInfoA
LoadIconA
GetSysColorBrush
OpenClipboard
SetClassLongA
GetParent
EnumThreadWindows
GetKeyboardLayout
GetClassInfoA
DrawIconEx
SetWindowLongA
GetActiveWindow
DrawTextA
SetWindowsHookExA
SendMessageW
SetClipboardData
GetMenu
GetMenuItemID
WindowFromPoint
GetFocus
SetWindowPos
GetCursorPos
RemoveMenu
CloseClipboard
GetKeyboardLayoutList
GetKeyState
ClientToScreen
GetMenuItemCount
ScreenToClient
IsDialogMessageW
LoadKeyboardLayoutA
AdjustWindowRectEx
DestroyIcon
GetDesktopWindow
GetCapture
CharNextA
DestroyWindow
MessageBoxA
ShowOwnedPopups
GetWindowPlacement
MsgWaitForMultipleObjects
GetScrollRange
SetPropA
OffsetRect
SetMenu
InsertMenuA
SetRect
GetWindowDC
GetDC
ShowScrollBar
IsWindowVisible
DispatchMessageW
DefFrameProcA
PtInRect
GetClientRect
IntersectRect
CharLowerA
DeleteMenu
SetWindowLongW
CreateIcon
GetLastActivePopup
SetWindowTextA
EndPaint
CheckMenuItem
IsZoomed
wsprintfA
RegisterClipboardFormatA
MapWindowPoints
IsWindow
DrawEdge
CharToOemA
GetWindowTextA
GetWindow
SetTimer
DestroyCursor
SetCursor
SetScrollRange
GetSystemMetrics
RedrawWindow
InvalidateRect
MessageBeep
InflateRect
CreateMenu
DefWindowProcA
SetWindowPlacement

shlwapi

SHQueryInfoKeyA
SHEnumValueA
PathFileExistsA
PathIsDirectoryA
SHGetValueA

Sections

.text
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc7
Size: 512B - Virtual size: 275B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc1
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc4
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc9
Size: 512B - Virtual size: 278B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc6
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

42d46fbbd41e6271383934bd8e0b4dae

Headers

File Characteristics

Imports

version

gdi32

kernel32

user32

shlwapi

Sections

.text Size: 71KB - Virtual size: 70KB

DATA Size: 1KB - Virtual size: 1KB

.rsrc7 Size: 512B - Virtual size: 275B

.rsrc1 Size: 5KB - Virtual size: 5KB

.rsrc4 Size: 512B - Virtual size: 10B

.rsrc9 Size: 512B - Virtual size: 278B

.rsrc6 Size: 154KB - Virtual size: 154KB

.rsrc Size: 1024B - Virtual size: 976B

.text
Size: 71KB - Virtual size: 70KB

DATA
Size: 1KB - Virtual size: 1KB

.rsrc7
Size: 512B - Virtual size: 275B

.rsrc1
Size: 5KB - Virtual size: 5KB

.rsrc4
Size: 512B - Virtual size: 10B

.rsrc9
Size: 512B - Virtual size: 278B

.rsrc6
Size: 154KB - Virtual size: 154KB

.rsrc
Size: 1024B - Virtual size: 976B