ed79ce36a60d1d1aca035b2b13cd320d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ed79ce36a60d1d1aca035b2b13cd320d_JaffaCakes118
Size

246KB
MD5

ed79ce36a60d1d1aca035b2b13cd320d
SHA1

7e0a471c52ef24a2a43a7e55ee3643195225acbf
SHA256

6c60a5216e5edac7a63b84f561a4c09acb33fcec56b41d0dfb74d70bd85b35c7
SHA512

7bb4f53b5815c3b9d5a430c02b7a55518b08ece8a36885bd4caf48a55214a5a85dafef386c39442dd037394493515611a4aafb145fb680e3c8765b4e40a37712
SSDEEP

6144:OtbdeyjqhIz3/bWI5AbtQUBSEvkAbv3KDk2yARDW0LayCQHwmaHOOYghkkt:mbRMpLtQqvk6vX2yARDW0bKmqT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ed79ce36a60d1d1aca035b2b13cd320d_JaffaCakes118

Files

ed79ce36a60d1d1aca035b2b13cd320d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0dd23e7a92022988c939e2a1f6dcaaf6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetViewportOrgEx
GetWorldTransform
GetColorAdjustment
SelectClipRgn
PaintRgn
Escape
ArcTo
GetICMProfileW
EnumFontFamiliesExW
GetCharABCWidthsFloatA

comdlg32

GetSaveFileNameW
PageSetupDlgA
ReplaceTextW
ChooseFontW
LoadAlterBitmap
ChooseFontA
ChooseColorA
GetSaveFileNameA
ChooseColorW
GetOpenFileNameA
GetFileTitleW
GetOpenFileNameW
PrintDlgW
FindTextW

user32

SetWindowsHookA
MessageBoxIndirectW
IsRectEmpty
GetClipCursor
UnionRect
UnregisterClassW
SetClassWord
RegisterClassA
GetMenuCheckMarkDimensions
DdeCreateDataHandle
EnumDisplayDevicesA
MenuItemFromPoint
OpenWindowStationW
MessageBeep
LoadIconW
GetDCEx
SwitchToThisWindow
EqualRect
CharToOemBuffW
DrawFrameControl
InSendMessage
IsDlgButtonChecked
GetMenu
BroadcastSystemMessage
VkKeyScanExW

advapi32

CryptReleaseContext
LookupPrivilegeDisplayNameA
CryptVerifySignatureW
RegQueryValueA
CryptDecrypt

kernel32

SetUnhandledExceptionFilter
HeapReAlloc
GetModuleFileNameA
GetTickCount
RtlUnwind
LCMapStringW
MultiByteToWideChar
GetFileType
GetLocaleInfoW
IsDebuggerPresent
FreeEnvironmentStringsW
IsValidCodePage
TlsFree
WriteFile
GetThreadContext
UnhandledExceptionFilter
WideCharToMultiByte
TlsSetValue
ExpandEnvironmentStringsA
InterlockedIncrement
GetOEMCP
GetThreadPriorityBoost
SetConsoleScreenBufferSize
GetCurrentProcessId
CreateThread
WriteConsoleOutputA
GetTimeZoneInformation
SetConsoleCtrlHandler
GetLastError
GetStartupInfoA
LoadLibraryA
FreeLibrary
IsValidLocale
LeaveCriticalSection
GetStringTypeW
LoadLibraryExW
GetModuleHandleA
GetProfileStringA
GetEnvironmentStringsW
SetEnvironmentVariableA
FindFirstFileA
GetModuleHandleW
HeapCreate
DebugBreak
SetLastError
MapViewOfFile
DeleteCriticalSection
VirtualAlloc
InterlockedExchange
UnlockFileEx
GetModuleFileNameW
HeapFree
HeapAlloc
GetTimeFormatA
CreateProcessA
GetACP
SetEndOfFile
GetStringTypeA
TerminateProcess
GetCPInfo
EnumCalendarInfoExA
VirtualQuery
CompareStringW
VirtualLock
Sleep
CompareStringA
WriteConsoleInputW
InterlockedDecrement
GetStdHandle
GetCurrentThread
LCMapStringA
TlsAlloc
HeapDestroy
FreeLibraryAndExitThread
GetUserDefaultLCID
InitializeCriticalSectionAndSpinCount
GetVersionExW
SetConsoleWindowInfo
GetSystemInfo
GetCommandLineW
GetCurrentProcess
GetCurrentThreadId
EnumSystemLocalesA
GetDateFormatA
HeapSize
ExitProcess
GetProcAddress
VirtualFree
QueryPerformanceCounter
TlsGetValue
EnterCriticalSection
GetSystemTimeAsFileTime
SetHandleCount
GetLocaleInfoA
GetStartupInfoW

wininet

InternetGetCertByURLA
FtpPutFileA
FtpSetCurrentDirectoryA
FtpFindFirstFileA

Sections

.text
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0dd23e7a92022988c939e2a1f6dcaaf6

Headers

File Characteristics

Imports

gdi32

comdlg32

user32

advapi32

kernel32

wininet

Sections

.text Size: 125KB - Virtual size: 124KB

.data Size: 112KB - Virtual size: 112KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 125KB - Virtual size: 124KB

.data
Size: 112KB - Virtual size: 112KB

.rsrc
Size: 8KB - Virtual size: 7KB