df8361b0ac6c8f01dfd7f88504a0b877_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

df8361b0ac6c8f01dfd7f88504a0b877_JaffaCakes118
Size

204KB
MD5

df8361b0ac6c8f01dfd7f88504a0b877
SHA1

5c6f27553b0effd993cb98a22f308b946e7cf67d
SHA256

bdf77469f61ee2c6f5901cecb0890083621b12a914b2638e9de2222d32bdf32c
SHA512

a9927cd2dc837223907f12253f54c533b01dbf07485f49e3858f55d64e5074033682e1a13495c038239c807367e790b8d44e5d674cb202238c669bc77ef1ff4d
SSDEEP

3072:IKqYNVsbEv2JRKoPQ66HOczGVyQyDZ1xfAgL09MggICk7YzClS2:cbbEgVPQ6SOcqyQy919ho9MG5Wyh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df8361b0ac6c8f01dfd7f88504a0b877_JaffaCakes118

Files

df8361b0ac6c8f01dfd7f88504a0b877_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8fbd2ed7c53d861dd44ea33961dc29dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClientRect
wsprintfA
PeekMessageA
FindWindowA
PostMessageA
GetWindowRect
GetQueueStatus
FillRect
GetSysColor
MoveWindow
RegisterWindowMessageA
GetClassNameA
CreateDialogParamA
SendMessageA
SetWindowLongA
RegisterClassExA
GetWindow
KillTimer
GetFocus
CreateWindowExA
MsgWaitForMultipleObjects
DefWindowProcA
IsChild
DestroyAcceleratorTable
EqualRect
SetWindowTextA
DestroyWindow
ShowWindow
GetWindowTextA
GetDlgItem
SetTimer
GetClassInfoExA
SetFocus
SendMessageTimeoutA
IsWindow
GetWindowTextLengthA
CopyRect
UnregisterClassA
DispatchMessageA
CreateAcceleratorTableA
SetCapture
ReleaseDC
GetWindowLongA
InvalidateRgn
RedrawWindow
wvsprintfA
GetActiveWindow
SetParent
CallWindowProcA
DrawTextA
EndPaint
ReleaseCapture
CharNextA
InvalidateRect
GetDC
GetDesktopWindow
BeginPaint
SendNotifyMessageA
SetRect
PostThreadMessageA
EnumDisplayDevicesA
GetParent
LoadCursorA
SetWindowPos

kernel32

GetLongPathNameW
SetFilePointer
UnmapViewOfFile
Sleep
DisableThreadLibraryCalls
GetProcessHandleCount
WideCharToMultiByte
CreateFileMappingA
LocalAlloc
ReadFile
GlobalAlloc
MapViewOfFile
EnumResourceTypesA
GlobalFree
GetTickCount
GetFileAttributesA
GlobalSize
GetFileSize
LocalFree
CreateFileW
WriteFile
CreateFileA
CloseHandle

ole32

CoTaskMemRealloc
CreateBindCtx
CreateStreamOnHGlobal
CoTaskMemAlloc
CLSIDFromProgID
StgIsStorageFile
CoGetClassObject
OleLockRunning
CreateItemMoniker
CoTaskMemFree
CoInitialize
OleUninitialize
CoUninitialize
CoInitializeSecurity
StgOpenStorage
StringFromGUID2
StgCreateDocfile
CoCreateInstance
CoSetProxyBlanket
GetRunningObjectTable
BindMoniker
OleInitialize
CLSIDFromString

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

setupapi

SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle

shlwapi

PathFileExistsW
PathCombineW

advapi32

CryptDestroyHash
CryptAcquireContextA
RegEnumValueA
CryptGetHashParam
CryptReleaseContext
CryptDestroyKey
RegCloseKey
RegSetValueExA
RegEnumKeyExA
RegCreateKeyExA
CryptHashData
RegOpenKeyExA
CryptEncrypt
CryptImportKey
CryptCreateHash
RegQueryValueExA
RegDeleteValueA
RegQueryInfoKeyA
RegDeleteKeyA

gdi32

BitBlt
SelectPalette
CreateDIBitmap
CreateFontA
GetObjectA
ExtEscape
DeleteObject
RealizePalette
GetDeviceCaps
GetStockObject
GetDIBits
StretchDIBits
SelectObject
CreateDIBSection
CreateSolidBrush
SetStretchBltMode
CreateCompatibleBitmap
DeleteDC
CreateCompatibleDC
SetBkMode

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8fbd2ed7c53d861dd44ea33961dc29dd

Headers

File Characteristics

Imports

user32

kernel32

ole32

shell32

setupapi

wininet

shlwapi

advapi32

gdi32

Sections

.text Size: 112KB - Virtual size: 111KB

.rdata Size: 4KB - Virtual size: 4KB

.bss Size: 86KB - Virtual size: 85KB

.tls Size: 1024B - Virtual size: 212KB

.text
Size: 112KB - Virtual size: 111KB

.rdata
Size: 4KB - Virtual size: 4KB

.bss
Size: 86KB - Virtual size: 85KB

.tls
Size: 1024B - Virtual size: 212KB