5415c21e38326304af82df5b2871fece_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5415c21e38326304af82df5b2871fece_JaffaCakes118
Size

160KB
MD5

5415c21e38326304af82df5b2871fece
SHA1

4cac78d2dc1a4a865da47ce3313b3f58fa3af501
SHA256

1ed783a48246dfc4f595987b0f5957a11def60a4495048e4898fa967839cbd56
SHA512

bef809e7bd0e979e1460d332754bfa84c5acd193ceca0a1094261c04db48f42e36a5b1b1abd984028e67492d0130402be2ac731df584b407d706bbc983b2251d
SSDEEP

3072:CT4kxQNuqmjEFRN5EIfoModtShjsdWOuoyWBa34mPVi1:CLEXbEIOEhEBa3Bi1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5415c21e38326304af82df5b2871fece_JaffaCakes118

Files

5415c21e38326304af82df5b2871fece_JaffaCakes118
.exe windows:4 windows x86 arch:x86

404edc3694bc2c87452e24bfbf64a278

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SafeArrayPtrOfIndex
VariantCopyInd
SysStringLen
SafeArrayGetElement
GetErrorInfo
SafeArrayCreate
RegisterTypeLib
SysFreeString

msvcrt

pow
time
cos
wcscspn
strcmp
memcpy

ole32

CoGetMalloc

gdi32

CreateBrushIndirect
CreateBitmap

kernel32

ExitThread
GetFileAttributesA
GetDiskFreeSpaceA
lstrlenA
FindFirstFileA
DeleteCriticalSection
GetProcessHeap
GetVersion
HeapDestroy
GetLocalTime
GetStartupInfoA
GlobalFindAtomA
GetCurrentProcessId
EnterCriticalSection
GetSystemDefaultLangID
lstrcmpA
CreateThread
SetThreadLocale
GlobalDeleteAtom
LoadLibraryExA
GetEnvironmentStrings
LoadLibraryA
GetTickCount
GetFileType
GlobalAlloc
VirtualQuery
WideCharToMultiByte
SetErrorMode
LockResource
VirtualAllocEx
GetCommandLineA
GetModuleHandleA
ReadFile
SetEndOfFile
DeleteFileA
GetLocaleInfoA
GetCurrentProcess
FreeResource
SetLastError
FormatMessageA
GetStdHandle
CloseHandle
ExitProcess
GetStringTypeA

shell32

SHGetSpecialFolderLocation
SHFileOperationA
SHGetFolderPathA
DragQueryFileA
SHGetDiskFreeSpaceA

comctl32

ImageList_DragShowNolock
ImageList_Create
ImageList_Remove
ImageList_Destroy
ImageList_Write
ImageList_DrawEx
ImageList_Add

user32

EnumWindows
SetForegroundWindow
GetWindowPlacement
GetMenuItemID
CheckMenuItem
SetParent
EndPaint
EnumThreadWindows
SetActiveWindow
ScrollWindow
InsertMenuA
SetTimer
GetKeyboardLayoutNameA
DefMDIChildProcA
CharUpperBuffA
MsgWaitForMultipleObjects
ReleaseCapture
FindWindowA
TranslateMessage
PostQuitMessage
GetSystemMenu
PeekMessageW
GetWindowDC
IsChild
MessageBeep
SetMenu
FillRect
GetWindowThreadProcessId
IsWindowEnabled
SetWindowPlacement
GetKeyboardType
OemToCharA
SendMessageA
SendMessageW
InflateRect
WaitMessage
UpdateWindow
GetScrollPos
DestroyWindow

version

VerInstallFileA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

404edc3694bc2c87452e24bfbf64a278

Headers

File Characteristics

Imports

oleaut32

msvcrt

ole32

gdi32

kernel32

shell32

comctl32

user32

version

Sections

.text Size: 28KB - Virtual size: 28KB

.idata Size: 512B - Virtual size: 68KB

.edata Size: 130KB - Virtual size: 129KB

.text
Size: 28KB - Virtual size: 28KB

.idata
Size: 512B - Virtual size: 68KB

.edata
Size: 130KB - Virtual size: 129KB