43dcef940d4d346455ea4270297a1e6b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

43dcef940d4d346455ea4270297a1e6b_JaffaCakes118
Size

76KB
MD5

43dcef940d4d346455ea4270297a1e6b
SHA1

4f6050bc71e3a5c7a308c16866800163835e026d
SHA256

c9d26dd6b9c563f9bedc2f089cfb0608a1b0d9c38240e0f20fa7d06abe7f4568
SHA512

89e9a6f7abf82265abefeb647bcd5385623c9aac6fd1fccbd6bedf08374780c3303f6ba9e40894140f5cf99e224612790dab8843ae0459127178a6929ff9686b
SSDEEP

1536:rK07zqol/W8AkgJ4efmV7RCUgASM+XDf4T0DAgRQmZJfO/tlU:HLAkgJ4oISM2DfqZdEJ2//

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43dcef940d4d346455ea4270297a1e6b_JaffaCakes118

Files

43dcef940d4d346455ea4270297a1e6b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7d994e80dbebb6a58897a6ca5e1620f7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateConsoleScreenBuffer
CreateEventA
DisableThreadLibraryCalls
ExitProcess
GetACP
GetCommandLineA
GetDateFormatA
GetLastError
GetModuleHandleA
GetOEMCP
GetProcessWorkingSetSize
GetStartupInfoA
GetStdHandle
GetStringTypeW
GetVersionExA
GlobalMemoryStatus
GlobalReAlloc
HeapAlloc
HeapCreate
HeapReAlloc
LCMapStringW
MapViewOfFile
MultiByteToWideChar
OutputDebugStringA
RtlUnwind
SetHandleCount
SetLastError
SetProcessWorkingSetSize
SetStdHandle
SetUnhandledExceptionFilter
SizeofResource
UnmapViewOfFile
WriteFile
lstrlenA

user32

SetDlgItemTextA
SendMessageA
RegisterWindowMessageA
LoadCursorA
IsIconic
GetWindowLongA
GetWindow
GetUserObjectSecurity
GetUpdateRgn
GetDC
FindWindowExA
FindWindowA
EmptyClipboard
CloseClipboard
BeginPaint
LoadMenuA

advapi32

RegQueryInfoKeyW
RegDeleteValueW
QueryServiceObjectSecurity
ObjectDeleteAuditAlarmA
MapGenericMask
LsaLookupPrivilegeValue
LsaEnumeratePrivileges
IsValidSecurityDescriptor
InitiateSystemShutdownExA
ElfRegisterEventSourceW
ConvertSecurityDescriptorToAccessNamedA
ChangeServiceConfig2A
BackupEventLogW
RegisterEventSourceA

olepro32

OleTranslateColor
OleLoadPicture

oleacc

ObjectFromLresult
AccessibleObjectFromEvent
GetRoleTextA
LresultFromObject

security

SealMessage
QueryContextAttributesA

comctl32

ImageList_SetIconSize
ImageList_SetFilter
ImageList_SetImageCount
ImageList_SetOverlayImage
ImageList_Write
InitCommonControls
InitCommonControlsEx
InitMUILanguage
InitializeFlatSB
LBItemFromPt
MakeDragList
MenuHelp
PropertySheetA
PropertySheetW
ShowHideMenuCtl
ImageList_SetFlags
UninitializeFlatSB
ImageList_SetDragCursorImage
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_Replace
ImageList_Read
ImageList_Merge
ImageList_LoadImageW
ImageList_LoadImageA
ImageList_GetImageRect
ImageList_GetImageInfo
CreateMappedBitmap
CreatePropertySheetPageA
CreatePropertySheetPageW
CreateStatusWindowA
CreateStatusWindowW
CreateUpDownControl
DestroyPropertySheetPage
DrawInsert
DrawStatusTextA
DrawStatusTextW
FlatSB_EnableScrollBar
FlatSB_GetScrollInfo
FlatSB_GetScrollPos
FlatSB_GetScrollProp
FlatSB_GetScrollRange
FlatSB_SetScrollInfo
FlatSB_SetScrollPos
FlatSB_SetScrollProp
FlatSB_SetScrollRange
FlatSB_ShowScrollBar
GetEffectiveClientRect
GetMUILanguage
ImageList_Add
ImageList_AddIcon
ImageList_BeginDrag
ImageList_Copy
ImageList_Create
ImageList_Destroy
ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
ImageList_Draw
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_Duplicate
ImageList_EndDrag
ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIcon
ImageList_GetIconSize
ImageList_GetImageCount

Sections

.text
Size: 46KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7d994e80dbebb6a58897a6ca5e1620f7

Headers

File Characteristics

Imports

kernel32

user32

advapi32

olepro32

oleacc

security

comctl32

Sections

.text Size: 46KB - Virtual size: 48KB

.data Size: 27KB - Virtual size: 28KB

.rsrc Size: 1024B - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 4KB

.text
Size: 46KB - Virtual size: 48KB

.data
Size: 27KB - Virtual size: 28KB

.rsrc
Size: 1024B - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 4KB