4160ba0aa9830482aed2c802c8eff6fe_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

4160ba0aa9830482aed2c802c8eff6fe_JaffaCakes118
Size

106KB
MD5

4160ba0aa9830482aed2c802c8eff6fe
SHA1

5fc4125eda8b848c2e17d12662a352f2e4c2bae1
SHA256

d51005040fa51fec746252eb037a508a1b0789fbdf62edf2e19eae12394ea691
SHA512

05c2283c69e005ad6f8c3e1a198d5e650062bfd757a7505c0f5a5df1f115348fbb0bcfe4548ce3d8b815670dff6675d1e41d8d8bdb7262e90677e0b033bc61ec
SSDEEP

1536:we9zLIIZxrmTjrz4mIV9uOsRhzADnvhU1DzfHZawzf60ztlLaaxsfva:we9zLIm6muNRUvQ9af0ZNZ9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4160ba0aa9830482aed2c802c8eff6fe_JaffaCakes118

Files

4160ba0aa9830482aed2c802c8eff6fe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f553b068c20c9f7ed21b4c1defd12822

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_except_handler3
__p__commode
_vsnprintf
_cexit
calloc
printf
__p__fmode
__set_app_type
_XcptFilter
__getmainargs
memmove
_acmdln
exit
atexit
strcmp
__setusermatherr
free
_exit
_adjust_fdiv
sinh
_initterm

kernel32

GetStdHandle
SetEnvironmentVariableA
CompareFileTime
GetConsoleMode
GetProfileIntA
GetUserDefaultLCID
GetCurrentThread
CreateEventA
GetStartupInfoA
GetProfileStringA
SetEvent
GetConsoleOutputCP
GetCurrentDirectoryA
RaiseException
FreeEnvironmentStringsW
DeleteFileW

gdi32

PlayMetaFileRecord
SetPixel
OffsetClipRgn
SelectObject
GetNearestColor
Chord
OffsetWindowOrgEx
RealizePalette
CreateICW
SetMapMode
CopyEnhMetaFileA
CreateFontA
SelectPalette
StrokePath

advapi32

RegOpenKeyA
RegCloseKey
OpenSCManagerA
CryptReleaseContext
ControlService
RegFlushKey
QueryServiceStatus
RegQueryInfoKeyA
GetSecurityDescriptorDacl
InitializeAcl
RegEnumKeyW
LookupPrivilegeValueW
RegEnumValueA
AllocateAndInitializeSid
RegQueryValueA
AdjustTokenPrivileges

user32

DefWindowProcA
ShowWindow
InsertMenuItemA
TranslateMessage
GetMessagePos
UpdateWindow
CheckMenuItem
LoadIconA
ScreenToClient
GetClassNameA
DrawTextA
RegisterClipboardFormatA

shell32

SHGetFolderLocation
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHBrowseForFolderW
ExtractIconA
ExtractIconW
CommandLineToArgvW
Shell_NotifyIconW

comctl32

CreatePropertySheetPageW
DestroyPropertySheetPage
ImageList_ReplaceIcon
InitCommonControls
InitCommonControlsEx
ImageList_Destroy
ImageList_Replace
CreateToolbarEx
ImageList_DragEnter
ImageList_AddMasked
CreatePropertySheetPageA

ole32

StringFromCLSID
CoCreateGuid
ReleaseStgMedium
CoUninitialize
OleGetClipboard
OleSetMenuDescriptor
CoTaskMemAlloc
GetRunningObjectTable
OleFlushClipboard
CoGetMalloc

oleaut32

VariantInit
GetActiveObject
SysStringLen
SetErrorInfo
SafeArrayPtrOfIndex
GetErrorInfo
SafeArrayCreate
SafeArrayGetUBound

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f553b068c20c9f7ed21b4c1defd12822

Headers

File Characteristics

Imports

msvcrt

kernel32

gdi32

advapi32

user32

shell32

comctl32

ole32

oleaut32

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 36KB

.rsrc Size: 25KB - Virtual size: 25KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 36KB

.rsrc
Size: 25KB - Virtual size: 25KB