f6ae096092378d568a30cefc2642774e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f6ae096092378d568a30cefc2642774e_JaffaCakes118
Size

564KB
MD5

f6ae096092378d568a30cefc2642774e
SHA1

a1d13747da571cb2683a9d5933e0472372af2e7e
SHA256

9f5376ccef879d1c296c6de80bb6cd9a3d39dccab6b9668fb6226a8ecd9aaabd
SHA512

5e917c45b542d110815efa79ae64dc8f436717f4796267ba41107e04e0b33e9b156862c92a9c4609381fbe5f259d26c4a5d5597e2a07fb269d4dc6abe3a60d4f
SSDEEP

6144:82jbyTm4l3b38PxvLrp2Af1ED5dBA943VSmQESELNP81oZ3LmN+l5abRm+b8byHk:82jIzLyuFX1IEqZVb8uHwqrqlNxvcn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f6ae096092378d568a30cefc2642774e_JaffaCakes118

Files

f6ae096092378d568a30cefc2642774e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6d1bee9538fdd996ed9004e4cde1d358

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetHangUp
HttpQueryInfoA
UnlockUrlCacheEntryStream
CommitUrlCacheEntryA
InternetSetDialStateW
GopherOpenFileW
SetUrlCacheEntryGroupA

kernel32

WriteConsoleA
GetVolumeInformationA
VirtualFree
GetDateFormatA
OpenMutexA
IsValidLocale
LeaveCriticalSection
InitializeCriticalSection
GetStartupInfoW
WriteFile
ExitProcess
GetTimeFormatA
GetSystemTimeAsFileTime
GetVersionExA
SetHandleCount
CreateWaitableTimerA
Sleep
GetEnvironmentStrings
HeapReAlloc
GetCurrentThread
WideCharToMultiByte
RtlUnwind
EnumSystemLocalesA
GetEnvironmentStringsW
UnhandledExceptionFilter
HeapFree
GetCompressedFileSizeA
LockFile
GetConsoleCP
CreateMutexA
TerminateProcess
GetStartupInfoA
ReadFile
DeleteCriticalSection
HeapValidate
CompareStringA
GetModuleFileNameW
lstrcmpA
GetUserDefaultLCID
SetLastError
SetFilePointer
GetConsoleMode
GetProcAddress
CompareStringW
SetUnhandledExceptionFilter
GetStringTypeA
QueryPerformanceCounter
GetConsoleOutputCP
GetCurrentProcessId
TlsSetValue
FlushFileBuffers
HeapSize
FreeLibrary
IsDebuggerPresent
HeapDestroy
GetTimeZoneInformation
TlsAlloc
GetModuleFileNameA
SetStdHandle
GetLastError
GetCurrentProcess
HeapAlloc
SetEnvironmentVariableA
VirtualQuery
GetOEMCP
FreeEnvironmentStringsA
IsValidCodePage
GetLocaleInfoW
HeapCreate
GetCPInfo
WriteConsoleW
GetProcessHeap
GetTickCount
SetConsoleCtrlHandler
GetStdHandle
GetFileType
GetCurrentThreadId
CreateFileA
GetCommandLineW
InterlockedExchange
LCMapStringW
GetModuleHandleA
GetLocaleInfoA
MultiByteToWideChar
TlsGetValue
GetACP
FreeEnvironmentStringsW
LoadLibraryA
TlsFree
LoadLibraryExA
GetStringTypeW
VirtualAlloc
EnterCriticalSection
InterlockedDecrement
CloseHandle
LCMapStringA
GetNumberFormatA
InterlockedIncrement
GetCommandLineA

comdlg32

PrintDlgA
ChooseColorW
GetSaveFileNameW
GetFileTitleA

user32

DrawStateW
RegisterClassA
EndDialog
IsWindowVisible
SwapMouseButton
SetCaretPos
VkKeyScanExA
SetProcessWindowStation
GetActiveWindow
ExcludeUpdateRgn
DefDlgProcW
ToAscii
GetDlgItemTextA
CreateIcon
MapDialogRect
LoadMenuIndirectW
RegisterClassExA
SetSysColors
PostThreadMessageA
MessageBoxA
LoadImageW
RegisterHotKey
GetMessageExtraInfo
UpdateWindow
GetScrollRange

comctl32

InitCommonControlsEx

Sections

.text
Size: 227KB - Virtual size: 226KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 317KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6d1bee9538fdd996ed9004e4cde1d358

Headers

File Characteristics

Imports

wininet

kernel32

comdlg32

user32

comctl32

Sections

.text Size: 227KB - Virtual size: 226KB

.rdata Size: 10KB - Virtual size: 15KB

.data Size: 317KB - Virtual size: 316KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 227KB - Virtual size: 226KB

.rdata
Size: 10KB - Virtual size: 15KB

.data
Size: 317KB - Virtual size: 316KB

.rsrc
Size: 9KB - Virtual size: 8KB