f51dab3bec323e416fbfe5220bf97838_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f51dab3bec323e416fbfe5220bf97838_JaffaCakes118
Size

514KB
MD5

f51dab3bec323e416fbfe5220bf97838
SHA1

2470a5e6d46a765c00cb84f16fb9fd19080e7221
SHA256

9cb14b09bca47215a0565adb3559e0229524612978851b58f4b815c591f9f33e
SHA512

c72ed93596a9a849e451763f3d3196a03744afdbbedcf476d0746fe5adc1c19fb5d628303dd1f5d8c9ee1e23092e2296a2adbb2da8c81227ad589cc132558057
SSDEEP

12288:ai1KrbCZXjYwoFuJBPXtQavcebnaaokXGG/:r1/VYZFu/xv1bfz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f51dab3bec323e416fbfe5220bf97838_JaffaCakes118

Files

f51dab3bec323e416fbfe5220bf97838_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a6522ae27596e5389905e6a7c3ecc3cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetMenuContextHelpId
GetComboBoxInfo
IsMenu
RegisterClassA
EnumDisplaySettingsW
RegisterClassExA
RegisterClipboardFormatA
DlgDirListA
SetMenuInfo
VkKeyScanExW
DialogBoxParamA
MapVirtualKeyExW
IsCharLowerA

kernel32

EnumSystemLocalesA
LoadLibraryA
GetConsoleCP
GetCurrentProcess
QueryPerformanceCounter
GetModuleFileNameW
SetUnhandledExceptionFilter
IsBadReadPtr
InitializeCriticalSection
GetACP
RtlUnwind
GetStdHandle
ExitProcess
SetEnvironmentVariableA
GetModuleHandleA
FlushFileBuffers
CreateMutexA
HeapDestroy
GetModuleFileNameA
SetConsoleCtrlHandler
FreeEnvironmentStringsA
GetStartupInfoW
GetDateFormatA
GetConsoleMode
GetCurrentThreadId
GetLocaleInfoA
SetLastError
FindAtomW
GetEnvironmentStrings
WriteFile
UnhandledExceptionFilter
GetTempFileNameA
TlsFree
GetFileType
WriteConsoleW
SetLocaleInfoW
TerminateProcess
TlsSetValue
VirtualAlloc
GetUserDefaultLCID
CompareStringW
CreateFileA
GetTimeZoneInformation
IsValidCodePage
GetCommandLineA
GetTimeFormatA
DebugBreak
GetStartupInfoA
FreeEnvironmentStringsW
GetLastError
GetTickCount
InterlockedDecrement
GetProcessHeap
GetCurrentThread
SystemTimeToTzSpecificLocalTime
GetConsoleOutputCP
MultiByteToWideChar
GetProcAddress
OpenMutexA
GetOEMCP
GetSystemTimeAsFileTime
HeapReAlloc
GetCurrentProcessId
EnterCriticalSection
WideCharToMultiByte
LoadLibraryW
TlsGetValue
HeapFree
CloseHandle
TlsAlloc
OutputDebugStringW
GetVersionExA
HeapCreate
ReadFile
GetAtomNameA
GetStringTypeW
LCMapStringW
InterlockedIncrement
HeapValidate
OutputDebugStringA
GetCommandLineW
GetEnvironmentStringsW
LeaveCriticalSection
lstrlenA
GetStringTypeA
AllocConsole
SetStdHandle
GetLocaleInfoW
RaiseException
SetHandleCount
WriteConsoleA
HeapAlloc
IsValidLocale
SetFilePointer
VirtualQuery
DeleteCriticalSection
FreeLibrary
FindResourceW
GetCPInfo
VirtualFree
CompareStringA
InterlockedExchange
LCMapStringA
IsDebuggerPresent

comdlg32

ReplaceTextA
GetFileTitleW
PageSetupDlgA

advapi32

RegDeleteKeyW
CryptSetProvParam
GetUserNameW
RegSaveKeyW
CryptEnumProviderTypesA
CreateServiceW

gdi32

GetCurrentObject
GetWindowOrgEx
ColorCorrectPalette
GetGlyphOutlineA
Polygon
ExtSelectClipRgn
CreateColorSpaceA
gdiPlaySpoolStream
GetEnhMetaFileDescriptionA
SetBkMode
SetTextJustification
SetICMProfileA
ExtTextOutW
ChoosePixelFormat
GdiSetBatchLimit
SetGraphicsMode
RectInRegion

comctl32

InitCommonControlsEx

wininet

GopherGetLocatorTypeA
CreateUrlCacheEntryW
SetUrlCacheGroupAttributeA
InternetCreateUrlA
HttpSendRequestA
UnlockUrlCacheEntryFile
FreeUrlCacheSpaceA
RetrieveUrlCacheEntryStreamA
IsUrlCacheEntryExpiredA

Sections

.text
Size: 305KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 47KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a6522ae27596e5389905e6a7c3ecc3cf

Headers

File Characteristics

Imports

user32

kernel32

comdlg32

advapi32

gdi32

comctl32

wininet

Sections

.text Size: 305KB - Virtual size: 304KB

.rdata Size: 47KB - Virtual size: 72KB

.data Size: 149KB - Virtual size: 149KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 305KB - Virtual size: 304KB

.rdata
Size: 47KB - Virtual size: 72KB

.data
Size: 149KB - Virtual size: 149KB

.rsrc
Size: 11KB - Virtual size: 11KB