f40d60dcf7f2a78382d01ee85bc064ff_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f40d60dcf7f2a78382d01ee85bc064ff_JaffaCakes118
Size

421KB
MD5

f40d60dcf7f2a78382d01ee85bc064ff
SHA1

61f44292bf292588cf6258c092ae91a89ed3b14e
SHA256

44795c3e40f8b225ada036e88c95cc75f12b9c06e247a3a6e3b84ab1a13aee1b
SHA512

651d7c3ad4910bcd37bc319bff1ac7feb2b537f17bd7344cb63fe758ac4acac77674febe41ec0c0f549892055cb99f8ce706ea87089373f136b4c02565aeeeed
SSDEEP

6144:d4jKGWbSETlUyjr2VMeVCAzSlmQXoUEwf4AHDyKh1MhpMKTxxKixybn:d4WGWbL3eVM6NSlmQTT4AHDyV1Iixo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f40d60dcf7f2a78382d01ee85bc064ff_JaffaCakes118

Files

f40d60dcf7f2a78382d01ee85bc064ff_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9aa9005967087679c54bc23ce5b18c56

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PrintDlgA
ChooseColorW
FindTextA
ReplaceTextA
LoadAlterBitmap
GetOpenFileNameW
ChooseFontA
GetSaveFileNameW
PageSetupDlgW

user32

WINNLSGetIMEHotkey
AnyPopup
GetMenuBarInfo
DlgDirListA
CascadeChildWindows
GetKeyboardLayoutNameA
LoadAcceleratorsW
SendNotifyMessageA
CountClipboardFormats
EnumWindowStationsA
GetMessageA
FillRect
DdeSetUserHandle

wininet

InternetTimeFromSystemTime
InternetOpenW
InternetShowSecurityInfoByURLA
InternetAutodial
FindNextUrlCacheContainerW
UnlockUrlCacheEntryStream
GetUrlCacheEntryInfoExW
InternetTimeToSystemTimeA
InternetSecurityProtocolToStringA
InternetInitializeAutoProxyDll
InternetGetConnectedStateExW
RunOnceUrlCache
FindNextUrlCacheContainerA
FindFirstUrlCacheEntryExW
FindNextUrlCacheEntryW
InternetGoOnlineW
SetUrlCacheConfigInfoW
HttpQueryInfoW
InternetCombineUrlA
InternetSetOptionExA
GopherCreateLocatorW
InternetGetCertByURLA
InternetDial
SetUrlCacheEntryGroup
SetUrlCacheEntryInfoA

advapi32

RegLoadKeyA
DuplicateToken
RegQueryMultipleValuesA
RegQueryValueW
RegSetValueA
RegDeleteKeyW
InitiateSystemShutdownA
RegQueryInfoKeyA
RegLoadKeyW
RegCloseKey
RegCreateKeyW
RevertToSelf
LookupPrivilegeNameA

kernel32

HeapAlloc
VirtualAlloc
HeapFree
WideCharToMultiByte
LeaveCriticalSection
GetProcessHeap
IsDebuggerPresent
VirtualFree
TlsGetValue
GetTimeZoneInformation
IsValidCodePage
GetCurrentThreadId
GetLocaleInfoW
RtlUnwind
MultiByteToWideChar
SetEnvironmentVariableA
VirtualQuery
SetHandleCount
GetCurrentProcess
GetFileType
HeapReAlloc
SetLastError
InterlockedExchange
GetLastError
SetConsoleCtrlHandler
CompareStringA
EnterCriticalSection
UnhandledExceptionFilter
GetStringTypeW
TlsFree
WriteFile
GetCommandLineA
GetEnvironmentStrings
GetEnvironmentVariableW
GetCurrentThread
TerminateProcess
GetSystemTimeAsFileTime
GetDateFormatA
FreeEnvironmentStringsW
TlsSetValue
InterlockedIncrement
GetCPInfo
GetStartupInfoA
InterlockedDecrement
GetEnvironmentStringsW
GetModuleHandleA
GetTimeFormatA
DeleteCriticalSection
HeapSize
IsValidLocale
GetVersionExA
CompareStringW
GetProcAddress
GetLocaleInfoA
GetModuleFileNameA
InitializeCriticalSection
TlsAlloc
SetUnhandledExceptionFilter
GetOEMCP
ExitProcess
LCMapStringW
LCMapStringA
GetACP
LoadLibraryA
HeapCreate
Sleep
GetUserDefaultLCID
GetCurrentProcessId
QueryPerformanceCounter
FreeEnvironmentStringsA
GetTickCount
GetStdHandle
HeapDestroy
FreeLibrary
EnumSystemLocalesA
GetStringTypeA

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 274KB - Virtual size: 281KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9aa9005967087679c54bc23ce5b18c56

Headers

File Characteristics

Imports

comdlg32

user32

wininet

advapi32

kernel32

Sections

.text Size: 136KB - Virtual size: 135KB

.data Size: 274KB - Virtual size: 281KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 136KB - Virtual size: 135KB

.data
Size: 274KB - Virtual size: 281KB

.rsrc
Size: 10KB - Virtual size: 9KB