2c8274e5ed0bc669b9aa24de00fda150_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2c8274e5ed0bc669b9aa24de00fda150_JaffaCakes118
Size

472KB
MD5

2c8274e5ed0bc669b9aa24de00fda150
SHA1

3260f8fc2b90d30f985fdbd866282db8ef603b18
SHA256

e1d054652a9f29aaf55bf76baa9bbc08446fe774faa5f6f9abef872ba2d3dd91
SHA512

cf2e801f04274a7e6eaf71ce1dfeecec2be9b1423b29ac0a19a2d7e484429f3a9fa1b0a89b8b1909f5133ff4ffd42f328e88ca180b7e395e5d76d021827bdc36
SSDEEP

6144:SqVH1DWFSlICb+dnKFyXA7HucbG/qn9e3HU4r49fWuyAEJ2G20XlBgKB5JosKU9b:ZVBWpCbKnL1coQsYIzQYPgKB5EU97Px

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c8274e5ed0bc669b9aa24de00fda150_JaffaCakes118

Files

2c8274e5ed0bc669b9aa24de00fda150_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5322161b936bf6198d6bea27d178cb99

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathIsDirectoryA
PathStripToRootA
PathFileExistsA
PathFindFileNameA

kernel32

HeapFree
GetTickCount
GetStartupInfoA
HeapReAlloc
InitializeCriticalSection
HeapAlloc
InterlockedExchange
GetSystemTimeAsFileTime
HeapDestroy
GetFileType
GetTimeFormatA
LCMapStringW
GetLastError
VirtualQuery
CreateMutexA
TlsAlloc
GetOEMCP
GetModuleFileNameA
GetSystemInfo
QueryPerformanceCounter
GetACP
CompareStringW
SetHandleCount
UnhandledExceptionFilter
RaiseException
GetCurrentProcess
GetStdHandle
ExitProcess
IsBadCodePtr
VirtualProtect
FlushFileBuffers
ReadFile
DeleteCriticalSection
LCMapStringA
TlsGetValue
VirtualAlloc
GetLocaleInfoA
GetProcAddress
TlsFree
LoadLibraryA
GetTimeZoneInformation
VirtualFree
FreeEnvironmentStringsW
GetCPInfo
MultiByteToWideChar
SetEnvironmentVariableA
FreeEnvironmentStringsA
GetDateFormatA
SetStdHandle
WideCharToMultiByte
LeaveCriticalSection
GetModuleHandleA
SetUnhandledExceptionFilter
GetEnvironmentStringsW
WriteFile
TerminateProcess
SetLastError
GetVersionExA
GetCurrentThreadId
CloseHandle
GetStringTypeW
RtlUnwind
EnterCriticalSection
GetCommandLineA
TlsSetValue
GetStringTypeA
HeapCreate
CompareStringA
GetEnvironmentStrings
HeapSize
GetCurrentProcessId
SetFilePointer

shell32

ShellExecuteA
SHGetPathFromIDListA
Shell_NotifyIconA
SHGetSpecialFolderPathA
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetMalloc
DragFinish
ord155
ShellExecuteExA

ole32

CoUninitialize
GetHGlobalFromILockBytes

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

user32

GetMenuState
IntersectRect
SetCursor
CallNextHookEx
DrawFocusRect
CreateWindowExA
GetNextDlgTabItem
GetWindowTextA
SetScrollInfo
LoadCursorA
SetWindowRgn
SetScrollPos
SetForegroundWindow
DefWindowProcA
EndPaint
SetWindowPlacement
GetCursorPos
DrawFrameControl
GetWindowTextLengthA
GetWindowDC
CopyRect
keybd_event
GetClipboardData
LoadAcceleratorsA
GetDlgItem
ValidateRect
GetClientRect
GetMessageA
GetSysColor
SetWindowTextA
TabbedTextOutA
GetParent
SetTimer
IsMenu
ClientToScreen
CopyAcceleratorTableA
DestroyWindow
GetWindowThreadProcessId
LoadIconA
GetWindowRect
WindowFromPoint
SetMenuItemBitmaps
SystemParametersInfoA
GetNextDlgGroupItem
DestroyCursor
SetDlgItemTextA
InsertMenuA
TranslateMessage
RegisterClassExA
GetForegroundWindow
GetDesktopWindow
CharUpperA
PtInRect
IsDlgButtonChecked
MessageBoxA
GrayStringA
SendDlgItemMessageA
WinHelpA
GetSystemMetrics
SetRectEmpty
PostQuitMessage
SetClassLongA
UnhookWindowsHookEx
BeginPaint
LoadImageA
MessageBeep
DispatchMessageA
GetMenu
AttachThreadInput
GetLastActivePopup
UnregisterClassA
GetClassLongA
GetKeyboardLayout
RegisterClassA
GetClassNameA
OffsetRect
LockWindowUpdate
GetMessageTime
FillRect
SetParent
IsChild
GetIconInfo
CopyIcon
GetKeyState
ShowWindow
LoadStringA
SetMenu
SetWindowPos
RegisterClipboardFormatA
DestroyIcon
GetCapture
InvalidateRect
GetSystemMenu
SetCapture
CloseClipboard
RedrawWindow
GetSubMenu
DrawMenuBar
GetClassInfoExA
SetActiveWindow

advapi32

CreateServiceA
RegEnumValueA
RegOpenKeyA
RegQueryValueA
RegQueryValueExA
GetTokenInformation
AllocateAndInitializeSid

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5322161b936bf6198d6bea27d178cb99

Headers

File Characteristics

Imports

shlwapi

kernel32

shell32

ole32

version

user32

advapi32

Sections

.text Size: 88KB - Virtual size: 85KB

.rdata Size: 264KB - Virtual size: 260KB

.data Size: 76KB - Virtual size: 87KB

.rsrc Size: 40KB - Virtual size: 38KB

.text
Size: 88KB - Virtual size: 85KB

.rdata
Size: 264KB - Virtual size: 260KB

.data
Size: 76KB - Virtual size: 87KB

.rsrc
Size: 40KB - Virtual size: 38KB