f4755f55dff6e6035173f15977917eed_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f4755f55dff6e6035173f15977917eed_JaffaCakes118
Size

531KB
MD5

f4755f55dff6e6035173f15977917eed
SHA1

ce1ec97f4c192988d269feb2132d45f0ad1be72b
SHA256

7350a23677d7b25ff2a8fc0f9189f427c2ced2981bfd9d14688f60c831297c7a
SHA512

1234b0d4e6c392098b9cac8b12fc5bab63116b8d0abdfe5cc63269be73e907a3f00c90161035ad3fb8fbfee8205775e3e07c3de51f59d584d24555659331ecae
SSDEEP

12288:nrCfES14KIVbD6ZBIyQhYu0Zg8mxfPF/SZrbTWtep:rC3tIVbDGewsfN/SZrr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f4755f55dff6e6035173f15977917eed_JaffaCakes118

Files

f4755f55dff6e6035173f15977917eed_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5133ff4bcf15aaea1cca68c7e0a13f04

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharToOemBuffW
TrackMouseEvent
GetWindow
PaintDesktop
ReleaseDC
TileWindows
GetParent
DialogBoxParamA
CreateCaret
LockWindowUpdate
EnumThreadWindows
ChangeClipboardChain
SetWindowTextA
GetQueueStatus
RegisterClassA
DrawIcon
UnloadKeyboardLayout
EnumDisplaySettingsW
EnumPropsExW
SetClassLongA
OffsetRect
LoadMenuA
RegisterClassExA
EnumPropsExA

shell32

DragQueryFileA
SHBrowseForFolderW
InternalExtractIconListW
ExtractAssociatedIconW

comctl32

InitCommonControlsEx

wininet

DeleteUrlCacheContainerW
InternetConfirmZoneCrossing
IsUrlCacheEntryExpiredA

kernel32

SetUnhandledExceptionFilter
HeapDestroy
HeapSize
SetEnvironmentVariableA
GetUserDefaultLCID
GetDateFormatA
HeapAlloc
CompareStringW
TerminateProcess
HeapReAlloc
GetEnvironmentStrings
SetLastError
WriteConsoleA
InterlockedExchange
SetFilePointer
GetStringTypeW
LCMapStringA
GetProcessHeap
FlushFileBuffers
GetProcAddress
GetConsoleOutputCP
ExitProcess
MultiByteToWideChar
GetCurrentThreadId
InitializeCriticalSection
Sleep
GetCurrentThread
TlsSetValue
GetLocaleInfoA
IsValidLocale
FreeEnvironmentStringsA
GetCommandLineA
GetTimeZoneInformation
FreeLibrary
IsDebuggerPresent
DeleteCriticalSection
GetOEMCP
GetStdHandle
WideCharToMultiByte
DebugBreak
GetStartupInfoW
VirtualQuery
GetModuleFileNameA
GetACP
WriteConsoleW
GetCurrentProcess
WriteProfileStringW
QueryPerformanceCounter
CompareStringA
GetModuleHandleA
CreateFileA
GetLocaleInfoW
RtlUnwind
LoadLibraryA
GetTickCount
GetConsoleMode
SetConsoleCtrlHandler
InterlockedDecrement
LeaveCriticalSection
GetCPInfo
EnumSystemLocalesA
GetStringTypeA
GetCommandLineW
SetSystemTime
TlsGetValue
GetEnvironmentStringsW
GetCurrentProcessId
InterlockedIncrement
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsW
CloseHandle
GetSystemTimeAsFileTime
SetStdHandle
OpenMutexA
IsValidCodePage
HeapFree
VirtualFree
GetVersionExA
WriteFile
VirtualAlloc
GetConsoleCP
GetFileType
GetStartupInfoA
UnhandledExceptionFilter
SetComputerNameA
GetLastError
LCMapStringW
EnterCriticalSection
SetHandleCount
HeapCreate
TlsFree
WritePrivateProfileStringA
GetModuleFileNameW
CreateMutexA
ReadFile
GetTimeFormatA
TlsAlloc

comdlg32

GetOpenFileNameA
PrintDlgA
ReplaceTextW

advapi32

RegEnumKeyA
LookupPrivilegeValueA
CryptCreateHash
CryptDuplicateKey
CryptImportKey
ReportEventA
RegRestoreKeyW
LookupPrivilegeNameA
CryptAcquireContextW
LookupAccountSidW
CryptGetDefaultProviderA
CryptVerifySignatureA
RegCreateKeyW
RegFlushKey
RegSetValueW
CreateServiceW
CryptGetProvParam
CryptDuplicateHash
RegOpenKeyA
CryptSetProviderW
StartServiceA
InitializeSecurityDescriptor
CryptGetDefaultProviderW
RegQueryValueExA
CryptVerifySignatureW

Sections

.text
Size: 190KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 316KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5133ff4bcf15aaea1cca68c7e0a13f04

Headers

File Characteristics

Imports

user32

shell32

comctl32

wininet

kernel32

comdlg32

advapi32

Sections

.text Size: 190KB - Virtual size: 190KB

.rdata Size: 11KB - Virtual size: 27KB

.data Size: 316KB - Virtual size: 316KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 190KB - Virtual size: 190KB

.rdata
Size: 11KB - Virtual size: 27KB

.data
Size: 316KB - Virtual size: 316KB

.rsrc
Size: 12KB - Virtual size: 11KB